Adobe on Tuesday patched security flaws in its Acrobat and Reader applications. The updates repair bug CVE-2009-1492, which concerns Adobe’s implementation of JavaScript in Reader and Acrobat. That flaw could allow a hacker to create a malicious PDF file that could execute other arbitrary code.
A second vulnerability, restricted to Reader for Unix, has also been fixed.
Adobe promised last week to fix the problems with its PDF software. The company recommends users of Acrobat or Reader versions 7, 8, or 9 update to the latest versions.