Because of weak cryptography it's possible to spoof Adobe signature for Acrobat Reader plugins.
vulners.com/securityvulns/securityvulns:doc:4274