It is not easy to keep up with Adobe these days. Patches and new exploits are almost released on a daily schedule. So here is the current State of Adobe the way I see it:
version 9.4.0 (latest version) is vulnerable
Adobe Reader Unspecified Memory Corruption Vulnerability
Secunia #SA42095, no CVE Number assigned yet
version 10.1.85.3 is vulnerable. Patch released today (Nov. 4th)
22.214.171.1245 (latest version)is vulnerable
Shockwave Settings Use-After-Free Vulnerability)
Secunia# SA42112, no CVE Number assigned yet
version 9.4.0 (latest version)is vulnerable
version 2.0.3 is vulnerable (old version)
Please let me know if you have corrections, or better if you find a simple overview about the state of Adobe bugs on Adobe's own site. Any Adobe people out there:Feel free to copy the concept :). This table will be frozen to today's state and we may update similar, updated tables in the future as a new article.
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
(c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.