[Security] Adobe Reader, Acrobat and Flash Player

[NoOp]

Heads up for those of you that use Adobe Reader & Flash
http://www.adobe.com/support/security/advisories/apsa09-03.html
[Security advisory for Adobe Reader, Acrobat and Flash Player]
<partial quote>
A critical vulnerability exists in the current versions of Flash Player
(v9.0.159.0 and v10.0.22.87) for Windows, Macintosh and Linux operating
systems, and the authplay.dll component that ships with Adobe Reader and
Acrobat v9.x for Windows, Macintosh and UNIX operating systems. This
vulnerability (CVE-2009-1862) could cause a crash and potentially allow
an attacker to take control of the affected system. There are reports
that this vulnerability is being actively exploited in the wild via
limited, targeted attacks against Adobe Reader v9 on Windows.
...
</partial quote>

This CERT advisory:
http://www.kb.cert.org/vuls/id/259425
recommends deleting or renaming libauthplay.so & librt3d.so. The
following terminal commands will rename those files (each are a single
line command):

$ sudo mv /opt/Adobe/Reader9/Reader/intellinux/lib/libauthplay.so
/opt/Adobe/Reader9/Reader/intellinux/lib/x-libauthplay.so-x

$ sudo mv /opt/Adobe/Reader9/Reader/intellinux/lib/librt3d.so
/opt/Adobe/Reader9/Reader/intellinux/lib/x-librt3d.so-x

In the interim, if you have the Adobe Reader set as your primary PDF
viewer, I'd recommend setting it back to the default Evince (Document
Viewer) until Adobe issues fixes (see the first advisory for the
estimated times). From Nautilus: right click on a PDF file, select
Properties|Open With|tick Document Viewer.

For FireFox and SeaMonkey browsers I recommend installing the PrefBar
add-on: http://prefbar.mozdev.org/ where you can easily add buttons to
turn off/on flash, javascript, java, etc. Others also recommend the Fx
add-on NoScript: https://addons.mozilla.org/en-US/firefox/addon/722.

Added refs:
http://www.securityfocus.com/bid/35759/info
http://blogs.adobe.com/psirt/