Adobe Acrobat Vulnerable to Cross-Site Forgery Attack
Adobe said that Acrobat 8.0 and Reader 8.0 aren't affected by the vulnerability, so customers are advised to upgrade to these versions if possible. The company also said it will release an update to versions 7.0.8 and earlier of Adobe Reader and Acrobat this week to correct the problems in these versions.
Opera Web Browser Vulnerable to DoS
The second potential problem occurs when a specially crafted marker is inserted into a a JPEG file header, which crashes the browser and could cause a heap overflow.
Opera Software recommends that people upgade to Opera 9.10 to avoid these problems.
Apple Quicktime Vulnerable to Execution of Arbitrary Code
A serious vulnerability in the Apple Quicktime player might allow an intruder to to compromise an affected system through the execution of arbitrary code. Apple is aware of the problem, but no official patch for Windows or OS X is available for the problem at this time. However a third-party patch is available for OS X users, at the URL below.
OpenOffice Vulnerable to Heap Overflows
John Heasman of NGSSoftware reported that OpenOffice contains heap overflow vulnerabilities that could be exploited by an intruder to execute arbitrary code, thereby compromising an affected system (at the first URL below). OpenOffice developers are aware of the problems, which were resolved with the release of OpenOffice 2.1.0 (at the second URL below).