July 2006
APSB06-08 - File Permissions Vulnerability in Adobe Reader and Adobe Acrobat (Mac OS)
ID: 00481
Ref: 467/2006
Date: 14 July 2006:13:56:27
Version: 1
Title: APSB06-08 - File Permissions Vulnerability in Adobe Reader and Adobe Acrobat (Mac OS)
Abstract:
Vendors affected: Adobe
Operating systems affected: Adobe
Applications affected: Adobe
Title
=====
APSB06-08 - File Permissions Vulnerability in Adobe Reader and Adobe Acrobat (Mac OS)
Detail
======
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Adobe Security Bulletins:
- - File Permissions Vulnerability in Adobe Reader and Adobe Acrobat (Mac OS)
- - Buffer Overflow Vulnerability in Adobe Acrobat
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
APSB06-08 - File Permissions Vulnerability in Adobe Reader and Adobe Acrobat (Mac OS)
Originally posted: July 11, 2006
Summary:
The file and folder permissions for Adobe Reader and Adobe Acrobat can permit non-privileged users to change key program files on Mac OSX. This condition presents a risk for shared, multi-user systems. Adobe Reader and Acrobat update 6.0.5 resolves this condition. Adobe recommends that customers using Adobe Reader or Adobe Acrobat apply these updates.
Severity Rating:
Adobe categorizes this issue as important and recommends that users apply this workaround to their installations:
http://direct.adobe.com/r?xcqvqvPEcElcn
Learn more:
http://www.adobe.com/go/apsb06-08
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
APSB06-09 - Buffer Overflow Vulnerability in Adobe Acrobat
Originally posted: July 11, 2006
Summary:
Malicious content inserted into a file, such as a document, could trigger a buffer overflow if the file is distilled to PDF with Adobe Acrobat.
Severity Rating:
Adobe categorizes this issue as critical and recommends that users apply this workaround to their installations:
http://direct.adobe.com/r?xcqvqvPEcElcn
Learn more:
http://www.adobe.com/go/apsb06-09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ANY INFORMATION, PATCHES, DOWNLOADS, WORKAROUNDS, OR FIXES PROVIDED BY ADOBE IN THIS BULLETIN ARE PROVIDED "AS IS"
WITHOUT WARRANTY OF ANY KIND. ADOBE AND ITS SUPPLIERS DISCLAIM ALL WARRANTIES, WHETHER EXPRESS OR IMPLIED OR OTHERWISE, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. ALSO, THERE IS NO WARRANTY OF NON-INFRINGEMENT, TITLE, OR QUIET ENJOYMENT.
(USA ONLY) SOME STATES DO NOT ALLOW THE EXCLUSION OF IMPLIED WARRANTIES, SO THE ABOVE EXCLUSION MAY NOT APPLY TO YOU. IN NO EVENT SHALL ADOBE, INC. OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING, WITHOUT LIMITATION, DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, SPECIAL, PUNITIVE, COVER, LOSS OF PROFITS, BUSINESS INTERRUPTION, OR THE LIKE, OR LOSS OF BUSINESS DAMAGES, BASED ON ANY THEORY OF LIABILITY INCLUDING BREACH OF CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE), PRODUCT LIABILITY OR OTHERWISE, EVEN IF ADOBE, INC. OR ITS SUPPLIERS OR THEIR REPRESENTATIVES HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. (USA ONLY) SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, SO THE ABOVE EXCLUSION OR LIMITATION MAY NOT APPLY TO YOU AND YOU MAY ALSO HAVE OTHER LEGAL RIGHTS THAT VARY FROM STATE TO STATE.
Adobe reserves the right, from time to time, to update the information in this document with current information.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This is a security message from Adobe Systems Incorporated, its affiliates and agents ("Adobe"), 345 Park Avenue, San Jose, CA 95110 USA.
Your privacy is important to us. Please review Adobe's online Privacy Policy by clicking here: www.adobe.com/misc/privacy.html