Skip to main content

Adobe to Patch Zero-day Vulnerability in Adobe Reader Soon

Adobe confirmed a few days back that a zero-day vulnerability existed in Adobe reader for Mac OS X, Microsoft's Windows and Unix operating systems.

The vulnerability is being exploited by hackers who have attacked the Adobe 9 reader on Windows, as confirmed by the company and reported by Adobe Security Advisory.

Through this hack the US defence contractors and research facilities have been reportedly attacked by the hackers.

The "critical vulnerability" has been discovered by Lockheed Martin's Computer Incident Response Team and MITRE. This vulnerability can enable an attacker to dispatch a malicious Adobe document file which eventually crashes Reader and "potentially allow an attacker to take control of the affected system," as reported by Adobe Product Security Incident Response Team's alert.

Brad Arkin, Adobe's director of product security, commented that the company plans to launch a fix for Windows versions of the Adobe Reader and Acrobat 9.4.6 "no later than the week of December 12." At present there is no workaround for the Reader 9.x., reported the company Blog post.

According to Arkin the risk to other operating systems is less as compared to the Windows operating system.