Adobe Patch Day: Updates for Reader/Acrobat XI and Robohelp

As you may know, Adobe shares Microsoft Patch Day. Today they released two security bulletins; one for Reader and Acrobat, and another for Robohelp. That said, these are pretty minor updates that won’t affect everyone.

The Reader and Acrobat update is probably the one you should pay closest attention to. However, it’s actually only an update for the newest version of Reader and Acrobat, called XI (11.0.0.4). The update doesn’t fix a new flaw, rather it fixes a regression of an old flaw. Reader XI reintroduced an issue with its javascript security controls. In short, if you have Reader X or lower, you’re fine. You only have to consider this update if you’re running the latest version.

The second Adobe update involves a more critical flaw, but only affects a product that few people use. Robohelp is a tool that allows people to create and publish web content for their products. It suffers from unspecified memory corruption vulnerability that attackers can leverage to remotely execute code. If you use Robohelp, this is a serious flaw, and you should update as soon as you can. However, I suspect few of my readers use Robohelp.

So to summarize, this month’s Adobe patch day is rather light, and involves limited products. If you happen to use the affected software, you should still update, but I’m guessing these issues will only affect a few of you.  — Corey Nachreiner, CISSP (@SecAdept)

About Corey Nachreiner

Corey Nachreiner has been with WatchGuard since 1999 and has since written more than a thousand concise security alerts and easily-understood educational articles for WatchGuard users. His security training videos have generated hundreds of letters of praise from thankful customers and accumulated more than 100,000 views on YouTube and Google Video. A Certified Information Systems Security Professional (CISSP), Corey speaks internationally and is often quoted by other online sources, including C|NET, eWeek, and Slashdot. Corey enjoys "modding" any technical gizmo he can get his hands on, and considers himself a hacker in the old sense of the word.

Trackbacks/Pingbacks

  1. Gartner IT Expo – WSWiR Episode 80 | WatchGuard Security Center - October 11, 2013

    […] Adobe updates Reader XI and RoboHelp – WGSC […]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: