Adobe released security updates for Acrobat 9 and Adobe Reader 9 on Thursday to address code flaws that could allow an attacker to run code remotely on user’s computers without their permission. Adobe classified the flaws as “critical,” and is suggesting all Acrobat and Adobe Reader users install the updates.
The security flaws were demonstrated in July at the Black Hat USA 2010 Conference. According to Adobe, “These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.”
The same security flaws were found in the Adobe Flash Player and were patched last week.
Acrobat 9.3.4 and Adobe Reader 9.3.4 are available as free updates at the Adobe Support Web site.