US-CERT Current Activity Adobe Reader, Acrobat and Flash Player Vulnerability Original release date: July 22, 2009 at 4:41 pm Last revised: July 23, 2009 at 1:46 pm Adobe has released a security advisory to address a vulnerability in Adobe Reader and Acrobat 9.1.2 and Flash Player 9 and 10. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review the security advisory and implement the following workarounds until a fix is available: * Disable Flash in Adobe Reader 9 on Windows platforms by renaming the following files: "%ProgramFiles%\Adobe\Reader 9.0\Reader\authplay.dll" and "%ProgramFiles%\Adobe\Reader 9.0\Reader\rt3d.dll". * Disable Flash Player or selectively enable Flash content as described in the Securing Your Web Browser Document. Additional information regarding this vulnerability can be found in Technical Cyber Security Alert TA09-204A. US-CERT will provide additional information as it becomes available. Relevant Url(s): <http://www.us-cert.gov/reading_room/securing_browser/> <http://www.adobe.com/support/security/advisories/apsa09-03.html> <http://www.us-cert.gov/cas/techalerts/TA09-204A.html> ==== This entry is available at http://www.us-cert.gov/current/index.html#adobe_reader_acrobat_and_flash Produced 2009 by US-CERT, a government organization. Note: Posted according to copyright permissions of US-CERT (United States Computer Emergency Readiness Team) Purpose of Posting -- To help others keep their genealogy computers healthy.