The patch was published Wednesday by RamzAfzar, a software development and pen-testing firm, which said it took approximately two hours to develop the fix. The method that the company used to fix the bug involves bypassing the insecure call in the DLL and using a more secure one in its place. The company says the patch works on Reader version 9.3.4; Adobe has given no indication that it plans to issue an emergency patch for the flaw before the next scheduled patch release on Oct. 4.
Source: https://threatpost.com/unofficial-patch-released-adobe-reader-bug-091510/74475/

