The press is reporting that an attack usingan internal link in a PDF document that includes JavaScript code is worse than thought -- thet code can access files on the user's hard drive.
There have been conflicting reports as to exactly which versions of the Adobe Reader in combination with which browsers are at risk:
Adobe says to upgrade to Adobe Reader 8 and they will work on fixes for previous versions. Some people have the full Adobe Acrobat instealled and it launches instead of just the Reader, something to consider.
So I guess Chris Wolf's advice to use plain ASCII for general announcements is the safest course, at least for now.
/rich
