The latest security bulletin lists a workaround of:
"Deleting, renaming, or removing access to the authplay.dll file that ships with Adobe Reader and Acrobat 9.x mitigates the threat for those products, but users will experience a non-exploitable crash or error message when opening a PDF file that contains SWF content."
Recently we rolled out reader 9.3 with the option to allow adobe reader to open non pdf file attachments with external applications turned off. Would we still need to remove the authplay.dll or we are no longer allowing reader to open external application would that guard against the vulnerability?
The latest Acrobat versions (9.x) play swf files internally. Turning off access to external applications doesn't help.