Adobe Announces Acrobat, Reader Fix

Adobe has announced that they will release an update for a newly-reported vulnerability in Acrobat and Reader on all platforms by May 12th.

The vulnerability was the first of two acknowledged by Adobe on Wednesday. They say the updates will cover Windows versions of Acrobat and Reader 9.x, 8,x and 7.x, and UNIX and Mac versions 9.x and 8.x.Adobe also has confirmed the second vulnerability, but says they have only been able to confirm it as exploitable on UNIX. They are still investigating this issue. The researcher who reported the vulnerability only claimed to have tested on Linux.

In the meantime there are still no reports of exploits in the wild. If you want to mitigate the vulnerability(*) you can do so by disabling JavaScript in Acrobat or Reader. To disable JavaScript in the Reader or Acrobat follow these instructions:



1. Launch Acrobat or Adobe Reader.


2. Select Edit>Preferences


3. Select the JavaScript Category


4. Uncheck the 'Enable Acrobat JavaScript' option


5. Click OK