In association with heise online

12 March 2008, 15:04

Vulnerability in UNIX version of Adobe Acrobat Reader

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Adobe has published a security advisory concerning a vulnerability in UNIX version 8.1.2 of its Acrobat Reader. The vendor writes that a flaw in the launcher script, acroread, can be exploited to escalate system privileges and edit or delete files. Temporary data are saved with the wrong privileges, allowing symlink attacks to be executed. The flaw can only be exploited locally. No update has yet been made available, but Adobe says it is working on one.

See also:

(mba)

Print Version | Send by email | Permalink: http://h-online.com/-734515
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit