Flaws: Adobe SVG Viewer

GreyMagic Software has found three vulnerabilities in Adobe's SVG Viewer, used for parsing Scalable Vector Graphics. One flaw helps bypass a disabled Active Scripting setting in Internet Explorer. Another flaw could be exploited by an attacker to read any file on the affected system. And a third flaw could be used to redirect users to the attacker's URL of choice.

More information is available at: http://security.greymagic.com/adv/gm004-mc/
http://security.greymagic.com/adv/gm003-mc/
http://security.greymagic.com/adv/gm002-mc/

Join the newsletter!

Error: Please check your email address.

More about Adobe Systems

Show Comments