Submission + - Disabling Javascript doesn't mitigate PDF Zero-day (secunia.com)
zonky writes: It turns out that Disabling JavaScript in Acrobat Reader doesn't totally mitigate the Zero-day Adbobe bug, according to Secunia in this blog posting: http://secunia.com/blog/44/.
While disabling JavaScript does defeat the publicly known exploits, Secunia managed to create a reliable, fully working exploit which does not use JavaScript and can therefore successfully compromise users, who may think they are safe because JavaScript support has been disabled.
Oh well. Only 14 days to go until a Adobe patch.