A new zero-day vulnerability in Adobe Reader has been disclosed, once again putting the popular PDF reader in possible peril from attackers.
The newly discovered vulnerability affects "all currently supported shipping versions" of the software, meaning Versions 9.1, 8.1.4, 7.1.1, and earlier of Adobe Reader and Acrobat, and on all operating system platforms for the applications, said Adobe's Product Security Incident Response Team (PSIRT) in its blog this afternoon.
F-Secure now advises users to switch over to an alternative PDF reader from the pdfreaders site for open-source PDF readers. The more diverse the PDF reader pool, the better for user security, says Patrik Runald, chief security advisor for F-Secure..
If you can't change from Adobe Acrobat Reader we strongly recommend that you disable the ability for it to run JavaScript. This is easily done via by going to:
Edit -> Preferences -> JavaScript -> Un-check "Enable Adobe JavaScript"
netizens left a footprint.