We are aware of reports of a zero-day exploit in Adobe Reader and Acrobat and have posted the following Security Advisory. Adobe Reader 9 and Acrobat 9 are vulnerable to this issue, as well as Adobe Reader and Acrobat 8.1.3 and earlier versions. We are in the process of fixing the issue, and we expect to make available an update for Adobe Reader 9 and Acrobat 9 by March 11th, 2009. Updates for Adobe Reader 8 and Acrobat 8 will follow soon after, with Adobe Reader 7 and Acrobat 7 updates to follow. In the meantime, Adobe is in contact with anti-virus vendors, including McAfee and Symantec, on this issue in order to ensure the security of our mutual customers.
By David Lenoe
February 19, 2009