Added: 11/16/2010
CVE: CVE-2010-3654
BID: 44504
OSVDB: 68932
Adobe Reader is free software for viewing PDF documents.
Adobe Reader 9.x is vulnerable to a remote code execution vulnerability as a result of parsing flash content by the bundled Adobe Flash Player.
Apply the patches referenced in APSA10-05 when they become available. In the interim, follow the relevant directions for mitigating the vulnerability in Adobe Reader.
<http://www.kb.cert.org/vuls/id/298081>
<http://secunia.com/advisories/42030/>
Exploit works on Adobe Reader 9.4.0 and the user must open the exploit file in Adobe Reader.
Windows