Security update available for RoboHelp

Friday, August 12 2011 @ 10:52 AM, By Ankur Jain

Summary: An important vulnerability has been identified in RoboHelp and RoboHelp Server. A specially crafted URL could be used to create a cross-site scripting attack on RoboHelp installations. Solution for this is now available.

Affected Software Versions: RoboHelp 9 (versions 9.0.1.232 and earlier), RoboHelp 8, RoboHelp Server 9, and RoboHelp Server 8 for Windows.

Note: Customers using RoboHelp 9 version 9.0.1.262 are not vulnerable to this issue.

Solution: Adobe recommends users update their RoboHelp and/or RoboHelp Server installations by applying the relevant updates using the instructions provided in this Security Bulletin.

Ankur Jain
Product Manager – Technical Communication Suite | RoboHelp
Follow me on Twitter: @ankurjain8

1 Responses RoboHelp, RoboHelp Server, Technical Communication
  • Michael H.

    How does this new whutils.js file compare to the one that fixes the SSL over IE issue (where the TOC and Search didn’t work)? Currently we are happy to have those working and I don’t want to mess that up. I guess it would be better to fix the cross-site scripting issue, but we really need to the TOC and Search to work too…

  • Categories

  • Archives

  • Authors

  • Useful Links

  • Recent Comments

    • Lola: The “Avoid unnecessary content in Anchored Frame” tip was helpful. I had drawn a border around my...
    • Paula Stern: Congratulations to all the winners and Adobe – great survey!
    • Priyank Shrivastava: Congratulations!
    • huh?: what is this ad doing on the techcomm blog? Why Sex is Good for Your Health Daily Health Post
    • Jang Graat: Hello Ashish, the link to the script is incorrect. It leads to an Acrobat page, not to a page where the...