Adobe Download Manager File Download and Execute Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 26 Feb 2010 4471 Views

RISK: Medium Risk

Medium Risk

A vulnerability has been identified in Adobe Download Manager, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused by an error when processing URLs, which could be exploited by attackers to download and install unauthorized software onto a vulnerable system by tricking a user into following a specially crafted link or visiting a malicious web page.

Note : The Adobe Download Manager is automatically installed when downloading Adobe Reader for Windows or Adobe Flash Player for Windows from Adobe's website, however, it is designed to remove itself from the computer after use at the next computer restart.

Impact

  • Remote Code Execution

System / Technologies affected

  • Adobe Download Manager on Windows (prior to February 23, 2010)

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Restart the system or manually uninstall Adobe Download Manager :
http://www.adobe.com/support/security/bulletins/apsb10-08.html

Vulnerability Identifier

Source

Share with

Previous

Symantec Products Client Proxy Remote Buffer Overflow Vulnerability

19 Feb 2010 4360 Views

Next

Microsoft Internet Explorer VBScript Remote Code Execution Vulnerability

2 Mar 2010 4218 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY