CVE-2010-1297. The vulnerability (CVE-2010-1297) causes the application to crash and could be used to run arbitrary code. This means that the malicious files could be downloaded or dropped on the affected system.
CVE-2010-1297 POC by Joshua J. Drake.
POC here (will crash your browser) http://qoop.org/security/poc/cve-2010-1297
The POC is based on the same sample as here Jun 7 Adobe 0 day CVE-2010-1297 11d2f8d754f3e52893c631f0.pdf
Download POC files (password infected)