Source: Blogcritics.org

Adobe Acrobat 7.0 and earlier, and the Adobe Reader 7.0 and earlier have a bug in the way they interact with an Internet Explorer ActiveX control. If this control is invoked directly by a webpage, an attacker may be able to learn whether certain local files exist. This will only happen on a computer that is running Microsoft Internet Explorer. According to Adobe, the file contents are not exposed. This has been fixed in the Adobe Acrobat and Acrobat Reader 7.0.1 update.

This story was posted on Thursday, April 7th, 2005 at 5:10 pm and is filed under Photoshop News. You can follow any responses to this story through the RSS 2.0 feed. Both comments and pings are currently closed.