The increasing number of vulnerabilities and corresponding patches for Adobe Reader and the Adobe Flash Player have surfaced some deficiencies in Adobe’s update system. In particular, there is no way to centrally manage updates for these products.
With the advent of centrally managed security software, and Microsoft Update via WSUS, IT departments have been staffed on the assumption that you wouldn’t need to be visiting individual user desktops for routine program updates. While Adobe Reader will check for updates after you launch a PDF, that’s a bit late…
Can anyone share best practices for small businesses — for whom it it may not be economically feasible to use Retina Network Security Scanner (from eEye) or Secunia CSI[/url] — to ensure prompt updates for these widely deployed Adobe products?