For anyone who
hasn't heard, Acrobat has announced a critical vulnerability in version 7.x of
Acrobat and Adobe Reader for Windows when used with Internet Explorer. The
vulnerability can allow an attacker to take complete control of a system, if
they can convince the user to open a malicious PDF file in IE. There are
no known exploits of it yet.
Recommended solutions include upgrading to the 8.x versions of the
programs (Reader 8 was just released) or updating the Acrobat ActiveX
control (acropdf.dll) for IE.
The Adobe advisory
is at: