On Thursday, October 8, 2009, Adobe Systems issued a security bulletin about a critical vulnerability in Adobe Reader and Acrobat 9.1.3 and earlier, affecting Windows, Macintosh, and UNIX platforms.
According to Adobe, users who have DEP enable on a Windows Vista platform are not affected by this vulnerability. Adobe will release an update to resolve this vulnerability on Tuesday, October 13, 2009.
See www.adobe.com/support/security/bulletins for a full copy of Adobe's security bulletin.