Reprinted from TidBITS by permission; reuse governed by Creative Commons
license BY-NC-ND 3.0. TidBITS has offered years of thoughtful commentary
on Apple and Internet topics. For free email subscriptions and access to the
entire TidBITS archive, visit http://www.tidbits.com/


          Adobe Acrobat Reader Flaws Could Let Attacks Hijack Your Mac

   Josh Centers

   If you use [1]Adobe Acrobat Reader, update your copy by choosing Help >
   Check for Updates. Security researcher [2]Yuebin Sun of Tencent
   Security Xuanwu Lab has discovered multiple vulnerabilities that could
   let a local attacker gain root access to your Mac. Fortunately,
   [3]Adobe has already fixed these vulnerabilities in the latest versions
   of Acrobat Reader.

   Most Mac users shouldn't need to use Acrobat Reader; macOS's built-in
   Preview app is smaller and faster. (Adam Engst and I are about to
   release a free minor update to our [4]Take Control of Preview book to
   update it for macOS 10.15 Catalina.) For creating and manipulating PDFs
   beyond what Preview can do, we recommend Smile's [5]PDFpen and
   [6]PDFpenPro. The main reason to rely on Acrobat Reader is if you
   regularly run across complex or malformed PDFs that Preview and PDFpen
   can't handle.

   [7]Read original article

References

   Visible links
   1. https://acrobat.adobe.com/us/en/acrobat/pdf-reader.html
   2. https://rekken.github.io/2020/05/14/Security-Flaws-in-Adobe-Acrobat-Reader-Allow-Malicious-Program-to-Gain-Root-on-macOS-Silently/
   3. https://helpx.adobe.com/security/products/acrobat/apsb20-24.html
   4. https://www.takecontrolbooks.com/preview/?pt=TIDBITS
   5. https://smilesoftware.com/pdfpen/
   6. https://smilesoftware.com/pdfpenpro/
   7. https://rekken.github.io/2020/05/14/Security-Flaws-in-Adobe-Acrobat-Reader-Allow-Malicious-Program-to-Gain-Root-on-macOS-Silently/

   Hidden links:
   8. https://tidbits.com/wp/../uploads/2020/05/Yuebin-Sun.png

.