Flaws found in both Acrobat and QuickTime
The weaknesses can leave systems at risk of attack, security firms claim.
Symantec and VeriSign iDefense have uncovered a security flaw in Adobe’s Acrobat Reader software that exposes the system to cyber attacks.
The weakness, which is located in the web browser of the Adobe systems, provides a means for cyber criminals to hack into the address of a web site using the software and could potentially lead to a rise in XSS attacks, the firms said.
“This development has the potential to significantly change the landscape of conventional cross-site-scripting attacks,” warned Symantec.
Meanwhile, Secunia and French Security Incidence Response Team (FrSIRT) have identified a flaw in Apple Computer’s QuickTime software.
The error, which affects how the media player handles the Real Time Streaming Protocol (RTSP), could impact both Macs and Windows PCs, according to the security companies’ research.