Adobe has released a security update to address a cross-site scripting vulnerability in versions 7.0.8 and earlier of its Adobe Reader and Acrobat software.
The company also posted a security bulletin detailing server-side workarounds that website owners could use to prevent their sites from being co-opted into attacks using the vulnerability, which was disclosed last week.
In response to those concerns, Adobe last week urged all users of its software to upgrade to version 8.0 of Adobe Reader and Acrobat, both of which were unaffected by the flaw. At that time, the company said it would release patches addressing the issue for users who wanted to continue using older versions of the two programs.
This week's security update from Adobe also addressed additional vulnerabilities identified in versions 7.0.8 and earlier of Reader and Acrobat, the company said. The vulnerabilities, which have been assigned a 'critical' severity rating by Adobe, allow for attackers to take complete control of an affected system.