Adobe Systems has released a security update to address a cross-site scripting vulnerability in versions 7.0.8 and earlier of its Adobe Reader and Acrobat software.
The company this week also posted a security bulletin detailing server-side workarounds that website owners could use to prevent their sites from being co-opted into attacks using the vulnerability, which came to light last week.
In response to those concerns, Adobe last week urged all users of its software to upgrade to Version 8 of Adobe Reader and Acrobat, both of which were unaffected by the flaw. At that time, the company also said it would release patches addressing the issue for users who wanted to continue using older versions of the two programs.
Tuesday's security update from Adobe also addressed additional vulnerabilities identified in versions 7.0.8 and earlier of Reader and Acrobat, the company said. The vulnerabilities, which have been assigned a critical severity rating by Adobe, allow for attackers to take complete control of an affected system.
Find your next job with computerworld UK jobs