Critical:
Moderately critical
Impact: System access
Where: From remote
Software: Adobe Acrobat Reader 5.x
Description:
NGSSoftware has discovered a vulnerability in Adobe Acrobat Reader, which potentially can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error within the debugging functionality when parsing documents in the XML forms data format (".xfdf"). This can be exploited to cause a buffer overflow by tricking a user into viewing a specially crafted XFDF document.
The vulnerability has been reported in version 5.1.
Solution:
The vendor reports that the vulnerability isn't present in the current version of Adobe Reader.
http://www.adobe.com/products/acrobat/readstep2.html
Provided and/or discovered by:
David Litchfield, NGSSoftware.
http://secunia.com/advisories/11037/

Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic