Adobe Reader and Acrobat Security Bypass Vulnerability (CVE-2014-0568)

Source: Internet
Author: User
Tags cve helpx

Adobe Reader and Acrobat Security Bypass Vulnerability (CVE-2014-0568)

Release date:
Updated on:

Affected Systems:
Adobe Reader 11.x
Adobe Reader 10.x
Description:
Bugtraq id: 69828
CVE (CAN) ID: CVE-2014-0568

Adobe Reader (also known as Acrobat Reader) is an excellent PDF document reading software developed by Adobe. Acrobat is a series of products launched in 1993 for enterprises, technicians and creative professionals, making smart document delivery and collaboration more flexible, reliable, and secure.

The Sandbox Bypass vulnerability exists in Adobe Reader earlier than 11.0.09, Adobe Reader earlier than 10.1.12, Adobe Acrobat earlier than 11.0.09, and Adobe Acrobat earlier than 10.1.12, after successful exploitation, you can run local code with elevated permissions on Windows.

<* Source: James Forshaw

Link: http://helpx.adobe.com/security/products/reader/apsb14-20.html
*>

Suggestion:
Vendor patch:

Adobe
-----
Adobe has released a Security Bulletin (apsb14-20) and patches for this:
Apsb14-20: Security Updates available for Adobe Reader and Acrobat
Link: http://helpx.adobe.com/security/products/reader/apsb14-20.html

Patch download:
Http://www.adobe.com/support/downloads/product.jsp? Product = 10 & platform = Windows
Http://www.adobe.com/support/downloads/product.jsp? Product = 10 & platform = Macintosh
Http://www.adobe.com/support/downloads/product.jsp? Product = 1 & platform = Windows
Http://www.adobe.com/support/downloads/product.jsp? Product = 1 & platform = Macintosh

This article permanently updates the link address:

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.