Adobe Security Bulletin APSB09-06 announces updates for two
* A vulnerability in the getAnnots() method (CVE-2009-1492)
affects Adobe Reader and Acrobat for Microsoft Windows, Apple
Mac OS X, and UNIX.
* A vulnerability in the customDictionaryOpen() method
(CVE-2009-1493) appears to only affect Adobe Reader for UNIX.
Further details are available in Vulnerability Note VU#970180.
An attacker could exploit these vulnerabilities by convincing a
user to open a specially crafted Adobe Portable Document Format
(PDF) file. Acrobat integrates with popular web browsers, and
visiting a website is usually sufficient to cause Reader or Acrobat
to open a PDF file.