Security Risk Hits Adobe PDF Reader

by Sean Michael Kerner

The company is “assessing” the risk that affects the document format software, popular with small businesses (and the rest of the world).

If you, like millions of other people, rely on Adobe Reader to download and view PDF files, be sure to read the security story at eSecurityPlanet.com. And while you’re at it, avoid opening PDF files from anyone you don’t know.

Users of Adobe Reader and Acrobat PDF documents could be risk from a new zero-day vulnerability, with the company saying it has gotten reports that the flaw is currently being exploited in the wild.

Adobe (NASDAQ: ADBE) has not yet released a full advisory detailing the security issue, but has issued a brief statement on its security blog.

"Adobe received reports of a vulnerability in Adobe Reader and Acrobat 9.2 and earlier versions being exploited in the wild (CVE-2009-4324)," Adobe's David Lenoe wrote on the Adobe Product Security Incident Response Team (PSIRT) blog. "We are currently investigating this issue and assessing the risk to our customers."

According to security researchers at the Shadowserver Foundation, the new Adobe PDF vulnerability has been circulating the Internet and resulting in exploits since Dec. 11.

Read the full Adobe Reader security story

Do you have a comment or question about this article or other small business topics in general? Speak out in the SmallBusinessComputing.com Forums. Join the discussion today!

This article was originally published on Wednesday Dec 16th 2009
Mobile Site | Full Site