Last week, Adobe released important security updates for Flash, Acrobat, and Shockwave as noted below. These should be promptly applied as applicable:
Adobe Releases Patches for in Numerous Products
QUOTE: Adobe released security patches for Acrobat, Adobe Reader, BlazeDS, ColdFusion, Flash Player, LiveCycle DataServices, LiveCycle ES, and Shockwave Player today. 13 vulnerabilities were patched in updates to most versions of Reader and Acrobat. Some of these are fixes to Flash vulnerabilities which apply to PDF readers because PDF files support Flash content. Many of the vulnerabilities are critical and can lead to remote code execution. PDFs are still a favorite vehicle for attack, so it’s important to apply these updates as quickly as possible. A single critical vulnerability in all versions of the Flash Player was also patched. The Android update is not ready, but should be available by the end of the week. The Shockwave update addresses 24 vulnerabilities, all of which appear critical.