Security update available for RoboHelp

Friday, August 12 2011 @ 10:52 AM, By Ankur Jain

Summary: An important vulnerability has been identified in RoboHelp and RoboHelp Server. A specially crafted URL could be used to create a cross-site scripting attack on RoboHelp installations. Solution for this is now available.

Affected Software Versions: RoboHelp 9 (versions 9.0.1.232 and earlier), RoboHelp 8, RoboHelp Server 9, and RoboHelp Server 8 for Windows.

Note: Customers using RoboHelp 9 version 9.0.1.262 are not vulnerable to this issue.

Solution: Adobe recommends users update their RoboHelp and/or RoboHelp Server installations by applying the relevant updates using the instructions provided in this Security Bulletin.

Ankur Jain
Product Manager – Technical Communication Suite | RoboHelp
Follow me on Twitter: @ankurjain8

COMMENTS

  • By Michael H. - 1:09 PM on August 12, 2011  

    How does this new whutils.js file compare to the one that fixes the SSL over IE issue (where the TOC and Search didn’t work)? Currently we are happy to have those working and I don’t want to mess that up. I guess it would be better to fix the cross-site scripting issue, but we really need to the TOC and Search to work too…

  • Categories

  • Archives

  • Authors

  • Useful Links

  • Recent Comments

    • Bjørn Smalbro: Hi Welcome aboard to the new folks! I do have a couple of questions; 1: I have every sent in my...
    • Dieter Gust: Kapil How can I check the DITA-OT version which is installed with FrameMaker?
    • Dieter Gust: >In this update, we have made a good number of enhancements as well as addressed many issues.”...
    • Mark Carson: Whoops, I meant “on” it…
    • Mark Carson: Sure hope Praveen likes to work on a Mac and wishes FrameMaker was no it.