Multiple vulnerabilities in Adobe Acrobat and Reader (APSB13-15)

Release date:
Updated on: 2013-05-19

Affected Systems:
Adobe Acrobat <= XI (11.0.02)
Adobe Reader <= 9.5.4
Description:
--------------------------------------------------------------------------------
Bugtraq id: 59851
CVE (CAN) ID: CVE-2013-2549, CVE-2013-2550, CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2724, CVE-2013-2725, CVE-2013-2726, CVE-2013-2727, CVE-2013-2729, CVE-2013-2730, CVE-2013-2731, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-2737, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, CVE-2013-3340, CVE-2013-3341
 
Adobe Reader (also known as Acrobat Reader) is an excellent PDF document reading software developed by Adobe. Acrobat is a series of products launched in 1993 for enterprises, technicians and creative professionals, making smart document delivery and collaboration more flexible, reliable, and secure.
 
Adobe Acrobat and Reader have multiple security vulnerabilities. Attackers can exploit these vulnerabilities to execute arbitrary code, cause denial of service, leak sensitive information, and perform unauthorized operations.
 
<* Source: Mateusz Jurczyk
Gynvael Coldwind
Tavis Ormandy
Felipe Andres Manzano

Link: http://www.adobe.com/support/security/bulletins/apsb13-15.html
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
 
Adobe
-----
Adobe has released a Security Bulletin (apsb13-15) and patches for this:
Apsb13-15: Security updates available for Adobe Reader and Acrobat
Link: http://www.adobe.com/support/security/bulletins/apsb13-15.html