SECUNIA ADVISORY ID: SA23666

VERIFY ADVISORY: http://secunia.com/advisories/23666/

CRITICAL: Highly critical

IMPACT: System access

SOFTWARE:
Adobe Reader 7.x - http://secunia.com/product/4546/
Adobe Reader 6.x - http://secunia.com/product/1810/

DESCRIPTION: Piotr Bania has reported a vulnerability in Adobe Reader, which can potentially be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error when processing PDF files. This can be exploited to cause a heap corruption and may allow execution of arbitrary code when a specially-crafted PDF file is opened. The vulnerability is reported in version 7.0.8 and prior. Other versions may also be affected.

SOLUTION: Update to version 7.0.9 or upgrade to version 8.0.

PROVIDED AND/OR DISCOVERED BY: Piotr Bania

ORIGINAL ADVISORY: http://www.piotrbania.com/all/adv/adobe-acrobat-adv.txt

Adobe: http://www.adobe.com/support/security/bulletins/apsb07-01.html