Adobe Patch Tuesday heads-up: Critical holes in PDF Reader

[nsane.forums]

As part of its scheduled quarterly update cycle, Adobe plans to release new versions of its PDF Reader/Acrobat software to gaping security holes that expose users to hacker attacks. The patches will be released next Tuesday (October 5, 2010) for Windows, Mac and UNIX users.

A pre-notification advisory from Adobe confirms that this patch batch will include a fix for CVE-2010-2883, which has already been exploited in zero day attacks.

In those attacks, the vulnerability is being exploited via rigged PDF files sent to select business targets.

The October 5, 2010 updates represent an accelerated release of the next quarterly security update originally scheduled for October 12, 2010.

View: Original Article

[henz]

every time i heard about adobe,

most of them have one word...

"CRITICAL"

:lol:

[HX1]

I am about ready to stand Adobe out on the corner and start making some money with all those holes...

[DKT27]

Something that's not mentioned in the above article. On this patch tuesday, Adobe will not only release a fix for the PDF holes, but also Reader, Acrobat and Flash. ;)

[CODYQX4]

Adobe has got to be the number one source of Windows exploits in a 3rd party product and not the OS itself.

I hear they add a sandbox in Acrobat 10, but Foxit already has that (Too bad I'm stuck needing Acrobat though).