Adobe has released a security advisory related to upcoming release of Acrobat Reader 9.3.2 and Acrobat 9.3.2 to address various vulnerabilities including CVE-2010-1297 (AuthPlayLib.bundle related vulnerability). The update is scheduled for release on June 29,2010 which is accelerated release date due to the critical nature of the exploit.
It has been reported that Acrobat Reader is being exploited in the wild using several vulnerabilities including CVE-2010-1297 (AuthPlayLib.bundle related vulnerability). As always users should use Preview.app, in a sandbox to view any content from the Web or an untrusted source. This update is tagged as CRITICAL
drStrangeP0rk
Adobe has released an update for Acrobat Reader and Acrobat to address these issues. Visit http://blogs.adobe.com/adobereader/2010/06/adobe_reader_and_acrobat_933_a.html for more information. Users should select Check for updates in Acrobat and Reader.
drStrangeP0rk
There will be another update to apply to Acrobat and Reader. The update did fully address issues related to .exe files and autorun. Since these are Windows executable this does not affect MacOS. Visit the Reader Security blog for more information.