JPCERT-AT-2014-0036 JPCERT/CC 2014-09-17 <<< JPCERT/CC Alert 2014-09-17 >>> Vulnerabilities in Adobe Reader and Acrobat (APSB14-20) https://www.jpcert.or.jp/english/at/2014/at140036.html I. Overview Multiple vulnerabilities exist in Adobe Acrobat Reader, a PDF file viewing software, and Adobe Acrobat, a PDF file creation and conversion software. As a result, a remote attacker could terminate Adobe Reader and Acrobat or execute arbitrary code by convincing a user to open a specially crafted PDF file. Security Updates available for Adobe Reader and Acrobat https://helpx.adobe.com/security/products/reader/apsb14-20.html II. Products Affected Affected products and versions are as follows: - Adobe Reader XI (11.0.08) and earlier - Adobe Reader X (10.1.11) and earlier - Adobe Acrobat XI (11.0.08) and earlier - Adobe Acrobat X (10.1.11) and earlier For more information, refer to the Adobe Systems website. III. Solution Please update Adobe Reader and Acrobat to the latest version listed below. Acrobat will be updated by starting the products, selecting the menu "Help (H)", and then clicking "Check for Updates (U)". - Adobe Reader XI (11.0.09) - Adobe Reader X (10.1.12) - Adobe Acrobat XI (11.0.09) - Adobe Acrobat X (10.1.12) If an update from the menu is not possible, download the latest Adobe Reader and Acrobat from the following URL: Adobe.com - New downloads https://www.adobe.com/support/downloads/new.jsp For more information, refer to the Adobe Systems website. IV. References Adobe Systems Security Updates available for Adobe Reader and Acrobat https://helpx.adobe.com/security/products/reader/apsb14-20.html If you have any information regarding this alert, please contact JPCERT/CC. ====================================================================== JPCERT Coordination Center (JPCERT/CC) MAIL: info@jpcert.or.jp TEL: +81-3-3518-4600 FAX: +81-3-3518-4602 https://www.jpcert.or.jp/english/