Group-IB, a Russian cybercrime investigation company has discovered a zero-day vulnerability, affects Adobe Reader X and Adobe Reader XI. The vulnerability is also included in new modified version of Blackhole Exploit-Kit, used for distributing the banking Trojans with the help of exploitation different vulnerabilities in client-side software. The exploit is available in underground forums for as much as $50,000 and bug is dangerous because it permits cybercriminals to run arbitrary shellcode by bypassing the sandbox feature integrated into the more recent versions of Adobe Reader.
Source: https://thehackernews.com/2012/11/adobe-reader-zero-day-vulnerability.html