>>
http://www.theregister.co.uk/2013/01/11/foxit_pdf_plugin_vuln/>
>Damn! Thanks for the heads up, though. I just started FoxIt to see what version I have and it prompted me to upgrade to version 5.4.4.1128, which the article says is affected. I
really to not want to go back to Adobe Reader. I am pretty sure one of its upgrades hosed my registry so there was no sound in either of my browsers.
You can still use the plugin, it's just that you should be a little careful - avoid using the plugin to open PDFs from sites you don't trust.
Actually, at this moment there is a much more serious unpatched vulnerability in Java:
http://mashable.com/2013/01/13/java-exploit/ . The same principle applies, disable or uninstall Java until it's fixed, or avoid untrusted sites that may use it.
It's worth putting in another plug for using FireFox with the NoScript add-on. By default it blocks all "active" content such as PDFs, Java, JavaScript etc. unless you explicitly white-list (i.e. "trust") a given site. That combination offers some protection against zero-day vulnerabilities in the browser itself and any plugins that may handle "active" content.
Regards. Al
"Violence is the last refuge of the incompetent." -- Isaac Asimov
"Never let your sense of morals prevent you from doing what is right." -- Isaac Asimov
Neither a despot, nor a doormat, be
Every app wants to be a database app when it grows up