Adobe issued patches for a five-month old JavaScript vulnerability in Reader, Acrobat 8.1.2, and six critical patches were released for Flash Player 9.

JavaScript vulnerabilities in older versions of Acrobat and Reader could allow remote code execution if not properly patched. This morning, Adobe issued critical patches for its ubiquitous Flash Player (v. 9.0.124.0), addressing issues that could lead to DNS rebinding attack, HTML injection, or potential information disclosure. Adobe has a page that tells users which version of Flash they're using, to simplify the security update process.