Heap-based buffer overflow in Adobe Reader 11.0.06 allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2014.
http://www.pwn2own.com/2014/03/pwn2own-results-for-wednesday-day-one/
http://twitter.com/thezdi/statuses/443827076580122624
http://helpx.adobe.com/security/products/reader/apsb14-15.html