Adobe has released a Security Bulletin to alert users of a vulnerability in Adobe Reader and Acrobat. This vulnerability may allow an attacker to execute arbitrary code or cause a denial-of-service condition. Adobe indicates that it has received reports of active exploitation.

US-CERT encourages users to take the following actions to help mitigate the risks:

• Review Adobe Security Bulletin APSA09-01.
• Disable JavaScript in Adobe Reader and Acrobat. Acrobat JavaScript can be disabled in the General preferences dialog (Edit, Preferences, JavaScript, and un-check "Enable Acrobat JavaScript").
• Prevent Internet Explorer from automatically opening PDF documents.
• Disable the displaying of PDF documents in the web browser. This can be disabled in the the General preferences dialog (Edit, Preferences, Internet, and un-check "Display PDF in browser").
  
• Use caution when opening untrusted PDF files.
• Install antivirus software, and keep virus signatures up to date.

Read more: US-CERT Current Activity