September 21, 2009, 6:52 AM — Last Friday Adobe released a security update to patch a critical vulnerability it is RoboHelp Server 8 software for Windows.
The vulnerability could allow an unauthorized user to gain access to a PC and execute arbitrary code, according to http://www.adobe.com/support/security/bulletins/apsb09-14.html " target="_blank">Adobe’s security bulletin.
RoboHelp is an authoring tool for developing help systems, learning content, knowledgebases, policies and procedures. The vulnerability was discovered earlier this month, and reported on Adobe’s RoboHelp blog.
Previous versions of RoboHelp Server, including 6.x and 7.x, were discovered to contain vulnerabilities that allow for cross-scripting attacks. In those versions, certain unspecified input was not properly sanitized before being returned to the user, allowing hackers to execute arbitrary HTML and script code in a user’s browser session.
Do you tweet? Follow me on Twitter here.