Foxit on Friday released an update to fix the problem with PDF readers running executables without users permission. The problem, which was identified and publicized by Didier Stevens earlier this week, still exists in Adobe Reader. The Foxit update is included in Foxit Reader version 3.2.1.0401. The update fixes a problem in the reader in which an attacker can abuse the way that the application handles embedded executables. The technique is caused by a feature in the PDF specification, and isn’t a vulnerability in the software itself.
Source: https://threatpost.com/foxit-fixes-pdf-executable-problem-040210/73778/