Adobe has issued an out-of-band security update to patch two critical vulnerabilities in the company’s Acrobat and Reader for both the Windows and macOS operating systems. The vulnerabilities were reported to Adobe by security researchers–Abdul-Aziz Hariri and Sebastian Apelt–from Trend Micro’s Zero Day Initiative (ZDI) The first vulnerability is a use-after-free bug that can lead to arbitrary code execution. Attackers can exploit the flaw by tricking a user into clicking a specially crafted PDF file, which will eventually execute code of their choice.
Source: https://thehackernews.com/2019/01/adobe-reader-vulnerabilities.html

