Adobe Acrobat 9 <= 9.4 (APSA10-05)
High Nessus Plugin ID 50380
SynopsisThe version of Adobe Acrobat on the remote Windows host is affected by a code execution vulnerability.
DescriptionThe remote Windows host contains Adobe Acrobat version 9.4 or earlier. Such versions are affected by an unspecified memory corruption vulnerability.
A remote attacker could exploit this issue by getting a user to open a maliciously crafted PDF containing SWF content, resulting in the execution of arbitrary code.
This vulnerability is reportedly being exploited in the wild.
SolutionUpgrade to the latest version when it is released. Adobe states it will be released the week of November 15, 2010.
In the meantime, deleting or renaming the version of 'authplay.dll' that ships with Adobe Acrobat will result in a non-exploitable crash when opening PDFs containing SWF content.