Problem

An elevation of privilege vulnerability (CVE-2018-8314) exists in Windows 7 to Windows 10 version 1507 related to the unsafe handling of file paths by the Windows file picker. This issue could be exploited to bypass security mitigations provided in Adobe Reader.  

Affected products

This issue affects Windows 7 through Windows 10 version 1507.  Hence, Adobe Reader could be vulnerable if you are using it on any one of these versions.

Mitigation

Microsoft released a security update that resolves this vulnerability, and Adobe strongly recommends that users apply the patch from Microsoft. For those users who are unable to do so, Adobe has introduced an optional mitigation in the following versions of Acrobat Reader that can be enabled by turning on the version-specific registry keys.

Download

Click the Get file button for the Reader version you have, unzip the downloaded file, and then double-click the registry file to run it.  

This work is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 Unported License  Twitter™ and Facebook posts are not covered under the terms of Creative Commons.

Legal Notices   |   Online Privacy Policy