A vulnerability has also been identified in ColdFusion
A number of critical vulnerabilities have been identified in Adobe Reader and Acrobat 11.0.0 and earlier variants for Windows and Mac, and in Adobe Reader 9.5.1 and earlier 9.x versions for Linux. As a result, the company plans on releasing security updates for these products on Tuesday, January 8, 2013.Adobe also says it’s aware of a security issue that affects ColdFusion 10, 9.0.2, 9.0.1 and 9.0 for Windows, Macintosh and UNIX.
It’s uncertain when the update will be released because the company is currently evaluating the reports. The exact date will be announced as soon as mitigation guidance for ColdFusion customers and a timeline for a fix are determined.
However, they will probably act fast since the ColdFusion security issues are currently being exploited in the wild.
In the meantime, be careful not to open documents received from untrusted sources.