Adobe Systems took some criticism in late February for what some perceived as a belated response to security vulnerabilities in Acrobat & Reader. When a couple new security issues arose recently, the company was quick with its initial response -- on the Adobe Product Security Incident Response Team (PSIRT) blog -- confirming the problems and promising to deliver fixes promptly.
Now the company has announced May 12 as the date by which it will "make available product updates for the relevant supported Adobe Reader and Acrobat versions and platforms." Further details are available in a new Security Advisory.
In the interim, Adobe advises users to disable JavaScript in Acrobat and Reader, as follows:
- Launch Acrobat or Adobe Reader.
- Select Edit>Preferences
- Select the JavaScript Category
- Uncheck the 'Enable Acrobat JavaScript' option
- Click OK