JavaScript vulnerability surfaces in Adobe Reader

Security experts are recommending that people disable JavaScript in Adobe Reader following reports of a vulnerability in the popular portable document format reader. Adobe saying that Windows, Mac and Unix versions of Reader are affected. The vulnerability appears to be due to an error in the "getAnnots()" JavaScript function and exploiting it could allow someone […]

Security experts are recommending that people disable JavaScript in Adobe Reader following reports of a vulnerability in the popular portable document format reader. Adobe saying that Windows, Mac and Unix versions of Reader are affected. The vulnerability appears to be due to an error in the "getAnnots()" JavaScript function and exploiting it could allow someone to remotely execute code on the machine, according to an advisory from the US-CERT.

"To disable JavaScript in Adobe Reader, open the General Preferences dialog box. From the Edit-Preferences-JavaScript menu, uncheck 'Enable Acrobat JavaScript.'"

More infoCNet