Adobe Reader 7.0.8

Adobe Reader 7.0.8

Adobe Systems Inc.  ❘ 36.1MB  ❘ Freeware
Android iOS Windows Mac Linux
out of 3777 votes
Rank 1 among competitors

Get from Adobe Systems Inc.

Below you can a history of notable security vulnerabilities and breaches related to Adobe Reader.

Table of Contents

  1. CVE-2024-41896: Use-After-Free Vulnerability
  2. CVE-2024-49530: Arbitrary Code Execution
  3. CVE-2024-49535: XML External Entity (XXE) Vulnerability
  4. CVE-2024-49531: Null Pointer Dereference
  5. CVE-2024-39383: Proof-of-Concept Crash
  6. 2013 Adobe Data Breach
  7. Operation Aurora: 2010 Targeted Attacks
  8. JavaScript Vulnerabilities in PDFs
  9. Shadow Attacks on Signed PDFs

CVE-2024-41896: Use-After-Free Vulnerability

CVE-2024-41896 is a critical "use-after-free" vulnerability identified in Adobe Acrobat Reader. This flaw occurs when the program attempts to access memory that has already been freed, potentially allowing attackers to execute arbitrary code on the affected system. Adobe addressed this issue in a security update released in September 2024. More Information

CVE-2024-49530: Arbitrary Code Execution

CVE-2024-49530 is a critical vulnerability allowing arbitrary code execution due to a "use-after-free" condition. An attacker could execute malicious code with the privileges of the current user, potentially compromising the entire system. Adobe released a patch in December 2024. Adobe Security Bulletin

CVE-2024-49535: XML External Entity (XXE) Vulnerability

CVE-2024-49535 involves improper restriction of XML external entity references. Exploitation could lead to unauthorized access to sensitive information or denial of service. Adobe provided a security update in December 2024. Adobe Security Bulletin

CVE-2024-49531: Null Pointer Dereference

CVE-2024-49531 results from a null pointer dereference causing application crashes or denial of service, disrupting normal software operation. Adobe fixed this issue in December 2024. Adobe Security Bulletin

CVE-2024-39383: Proof-of-Concept Crash

CVE-2024-39383 can cause Adobe Acrobat and Reader to crash, but there were no reported active exploits as of August 2024. Adobe acknowledged the proof-of-concept existence. Adobe Security Bulletin

2013 Adobe Data Breach

In 2013, Adobe experienced a massive data breach impacting approximately 38 million users. Compromised data included encrypted passwords, credit card details, and product source code, raising significant concerns about infrastructure security. Details on Twingate

Operation Aurora: 2010 Targeted Attacks

Operation Aurora involved cyberattacks targeting companies including Adobe and Google through a zero-day vulnerability in Adobe Reader. Malicious PDF files installed malware, underscoring risks with unpatched software. More on Wired

JavaScript Vulnerabilities in PDFs

JavaScript within Adobe Reader PDFs enhances interactivity but has historically been exploited to execute malicious scripts, causing security breaches. Users frequently disable JavaScript to mitigate this risk. Adobe Acrobat on Wikipedia

Shadow Attacks on Signed PDFs

Shadow attacks exploit weaknesses in digital signatures allowing alteration of visible content without invalidating signatures, posing significant authenticity challenges for signed PDFs. PDF Vulnerabilities on Wikipedia


For up-to-date security information, always consult Adobe’s official Security Bulletins and Advisories.

Installations

34,558 users of UpdateStar had Adobe Reader installed last month.

Alternatives


PDFCreator

PDFCreator: Create and convert PDF files with ease!

FlexiPDF

FlexiPDF: The Ultimate PDF Editing Tool

Foxit PDF Reader

Efficient PDF viewing with Foxit Reader

FoxitReader

Efficient PDF Viewer with User-Friendly Interface

soft Xpansion Perfect PDF Premium

Create and edit PDFs effortlessly with Soft Xpansion Perfect PDF Premium

PDF-Creator

Effortlessly create professional PDF documents with PDF-Creator.
Secure and free downloads checked by UpdateStar

Stay up-to-date
with UpdateStar freeware.

Latest Reviews

ValhallaVintageVerbDemo ValhallaVintageVerbDemo
Elevate Your Sound Design with Valhalla VintageVerb Demo
Korg Kontrol Editor Korg Kontrol Editor
Unlock Your Korg Gear with Ease!
Jewel Match Snowscapes Jewel Match Snowscapes
A Winter Wonderland of Puzzling Fun
VeeR VR VeeR VR
Immerse Yourself in a New Reality with VeeR VR
Hunting Simulator Hunting Simulator
Realistic Hunting Experience with Stunning Landscapes
Bifrost Extension for Maya Bifrost Extension for Maya
Visualize and Explore 3D Data Effortlessly with Bifrost Extension for Maya
UpdateStar Premium Edition UpdateStar Premium Edition
Keeping Your Software Updated Has Never Been Easier with UpdateStar Premium Edition!
Microsoft Edge Microsoft Edge
A New Standard in Web Browsing
Microsoft Visual C++ 2015 Redistributable Package Microsoft Visual C++ 2015 Redistributable Package
Boost your system performance with Microsoft Visual C++ 2015 Redistributable Package!
Google Chrome Google Chrome
Fast and Versatile Web Browser
Microsoft Visual C++ 2010 Redistributable Microsoft Visual C++ 2010 Redistributable
Essential Component for Running Visual C++ Applications
Microsoft OneDrive Microsoft OneDrive
Streamline Your File Management with Microsoft OneDrive

Latest Updates


Microsoft Edge 138.0.3351.83

A New Standard in Web Browsing

WebCatalog 68.0.1

Organize Your Web Apps in One Place with WebCatalog

OCCT 14.2.0

Maximize Your Hardware's Potential with OCCT

Viber 25.7.1.0

Stay Connected with Viber Messaging App

n-Track Studio 10.2.2.10106

Unleash Your Creativity with n-Track Studio

GS-Calc 24.0.1

GS-Calc: A Versatile Tool for Complex Calculation Needs