Adobe has now confirmed the bug in Acrobat and Reader that UK security researcher ‘Petko Petkov’ previously detailed on his blog, describing what he termed a ‘serious vulnerability in Adobe’s PDF file system.’
Adobe posted an advisory late last week that revealed the flaw discovered by Petkov was real and that Adobe was working on a permanent fix to the flaw. Meanwhile the company posted a workaround for users until then.
The workaround is detailed on Adobe’s site here. Adobe categorized the vulnerability as a critical issue and encourages users to implement the workaround.
Adobe plans to update Adobe Reader 8.1 and Adobe Acrobat 8.1 by the end of October according to the statement.
Adobe also thanked ‘pdp of gnucitizen.org’ for reporting the vulnerability.