Adobe Update addresses 0-days in Reader

Adobe published out-of-band update APSB10-028 for Adobe Reader and Adobe Acrobat for Windows and Mac OS X that addresses the 2 currently open 0-day vulnerabilities> The first vulnerability is in the embedded Flash player CVE-2010-3654 and the other one in the printSpes function CVE-2010-4091

Both vulnerabilities have active exploits in the wild and we recommend patching as soon as possible.

Unix users will get their update on November 30th.

Leave a Reply