Adobe Reader and Adobe Acrobat zero-day flaws to be fixed this week

Adobe Reader and Adobe Acrobat will be patched in the coming days.

Software giant Adobe has confirmed that a software patch will be released this week to fix two security vulnerabilities in its Reader and Acrobat software.

As reported by IT Pro last week, security flaws were recently found in several versions of Adobe Reader and Adobe Acrobat that experts feared could be used to carry out targeted attacks on Mac and PC users.

Security vendor, FireEye, discovered the vulnerabilities and claimed they were already being exploited in the wild.

The vulnerabilities, which are identified as critical in a security advisory on Adobe's website, can cause applications to crash and puts the system at a higher risk for infiltration by attackers.

"Adobe is aware of reports that these vulnerabilities are being exploited in the wild in targeted attacks designed to trick Windows users into clicking on a malicious PDF file delivered in an email message," a section of the Adobe advisory read.

However, in a follow-up advisory published over the weekend, Adobe confirmed that it plans to roll out an update that will fix the security holes later this week.

In the meantime, Adobe has advised users to take proper security precautions until the updates are released. They have also been advised not to open PDF documents from unknown sources.

"Users of Adobe Reader XI and Acrobat XI for Windows can protect themselves from this exploit by enabling Protected View," the advisory added.

"To enable this setting, choose the 'Files from potentially unsafe locations' option under the Edit > Preferences > Security (Enhanced) menu," it continued.

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Security best practices for PostgreSQL

Securing data with PostgreSQL

Download now

Transform your MSP business into a money-making machine

Benefits and challenges of a recurring revenue model

Download now

The care and feeding of cloud

How to support cloud infrastructure post-migration

Watch now

Recommended

Hackers leak data from dark web marketplace
cyber security

Hackers leak data from dark web marketplace

9 Apr 2021
How to encrypt files and folders in Windows 10
encryption

How to encrypt files and folders in Windows 10

9 Apr 2021
The definitive guide to IT security
Whitepaper

The definitive guide to IT security

9 Apr 2021
Evidence suggests REvil behind Harris Federation ransomware attack
ransomware

Evidence suggests REvil behind Harris Federation ransomware attack

9 Apr 2021

Most Popular

Microsoft is submerging servers in boiling liquid to prevent Teams outages
data centres

Microsoft is submerging servers in boiling liquid to prevent Teams outages

7 Apr 2021
Hackers are using fake messages to break into WhatsApp accounts
instant messaging (IM)

Hackers are using fake messages to break into WhatsApp accounts

8 Apr 2021
Alienware’s new gaming laptop is a kick in the teeth for Intel’s new CEO
Hardware

Alienware’s new gaming laptop is a kick in the teeth for Intel’s new CEO

8 Apr 2021