Skip to content
Thoughtful, detailed coverage of everything Apple for 33 years
and the TidBITS Content Network for Apple professionals

Acrobat Vulnerabilities Fixed

Acrobat Vulnerabilities Fixed — Adobe has released Adobe Reader 7.0.2 and Adobe Acrobat Standard/Professional 7.0.2 for the Macintosh, in part to fix a pair of security vulnerabilities and to improve form handling. In one vulnerability, a malicious JavaScript embedded within a PDF file could launch an arbitrary application on your Mac, at least as long as the exact application and path name is known in advance by the attacker. In the second vulnerability, the updater for Adobe Reader and Acrobat could either elevate the permissions of a pre-existing Safari Frameworks folder or create such a folder with elevated permissions.

<http://www.adobe.com/support/techdocs/ 331709.html>

<http://www.adobe.com/support/techdocs/ 331711.html>

The free 7.0.2 updaters work only on version 7.0.1; if you haven’t already updated from 7.0 to 7.0.1, you must do so before updating to 7.0.2. You can either download the updates manually from the URLs below or use the Check for Updates Now command in the Help menu of each program, after which the Adobe Update Manager application will download and install the update automatically. The Adobe Reader update is an 11.2 MB download; the Acrobat Standard/Professional downloads check in at 99.6 MB. [ACE]

<http://www.adobe.com/support/downloads/ product.jsp?product=10& amp;platform=Macintosh>

<http://www.adobe.com/support/downloads/ product.jsp?product=1& amp;platform=Macintosh>


Subscribe today so you don’t miss any TidBITS articles!

Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For over 33 years, we’ve published professional, member-supported tech journalism that makes you smarter.

Registration confirmation will be emailed to you.

This site is protected by reCAPTCHA. The Google Privacy Policy and Terms of Service apply.