Adobe Systems has released an emergency security update to fix 17 vulnerabilities in its Reader and Acrobat applications, including two critical bugs that are being exploited by hackers in the wild.
The vulnerabilities were first reported by Adobe on 4 June, along with another critical vulnerability in its Flash player, which was patched within a few days.
The security patch for Acrobat and Reader had been scheduled for release on 13 June, but was moved forward by the company because the vulnerabilities addressed were being exploited by hackers to install malware onto end users machines.
In a blog post, Adobe said: “With this accelerated schedule, Adobe will not release additional updates for Adobe Reader and Acrobat on July 13, 2010.”
Adobe said on its security bulletin page that the vulnerabilities affect Adobe Reader 9.3.2 and earlier versions for Windows, Macintosh, and UNIX.
The vulnerabilities also affected Adobe Acrobat 9.3.2 and previous versions for Windows and Macintosh.
The company said that users' software will be automatically updated via Adobe's automatic update feature.