Passing this security alert along from the LStech list:

This came in from the SANS list.  I know a few on the list have mentioned using Foxit:

(2) CRITICAL: Foxit Reader Multiple Vulnerabilities Affected:
Foxit Reader 3.0.2009 1301
Foxit Reader 3.0
Foxit Reader 2.3

Description: Foxit Reader, a small and fast Portable Document Format (PDF) document viewer and printer with over 50 million customer base, has multiple vulnerabilities in it. A specially crafted PDF with an overlong filename argument combined with an "Open/Execute a file" action defined when opened with the vulnerable reader can be used to exploit a stack-based buffer overflow vulnerability. Successful exploitation can be used to execute arbitrary code or crash the application. There is authorization bypass vulnerability with the same "Open/Execute a file" action as a result of which the Foxit Reader will open/execute the file without confirming with the user. The third vulnerability is due to an error while decoding JBIG2 symbol dictionary segments, and this can be used to dereference uninitialized memory that might lead to execution of arbitrary code. Note that this JBIG2 vulnerability is different from the Adobe JBIG2 vulnerability. The technical details of these security issues have been publicly posted along with the some proof-of-concepts.

Status: Vendor confirmed, updates available.

You can subscribe to the SANS "@RISK: The Consensus Security Alert" list for these kinds of updates.