AfterDawn: News

Adobe fixes Download Manager code execution bug

Adobe Systems said on Tuesday that it patched a critical vulnerability that affected the Adobe Download Manager. The Download Manager is used when Internet users download Flash or Reader software from Adobes websites.

A critical vulnerability was discovered that could be used by attackers to remotely install malicious software on a victims PC. In order to fulfill an exploit, an attacker would lead the victim to a special modified link on the adobe.com domain.



The combination of the two combined to make a very serious security threat. The download manager is usually removed from a users' PC as soon as a computer is restarted. Users of the download manager in the past can ensure security by making sure the directory - C:Program FilesNOS - is not present.

More information on the issue is available at:
http://www.adobe.com/support/security/bulletins/apsb10-08.html

Written by: James Delahunty @ 23 Feb 2010 19:03

• Previous article

• Acer decides to hold back on e-book reader

• Next article

• iPhone is top shipped smartphone in 2009

• 3 comments

• blueboy09

  Well, they did say that Adobe would be targets for alleged hackers? Guess they aren't kidding now, are they?
  

  Life is about walking on thin ice, if you make too much drama, youll crack under pressure. - BLUEBOY

  23.2.2010 19:09 #1

• nrmsmith

  It really annoys me that Adobe forces me to download their Download Manager just so it can "manage" my download of a 1-2 MB Flash Install file

  25.2.2010 05:01 #2

• dbminter

  Quote:Users of the download manager in the past can ensure security by making sure the directory - C:Program FilesNOS - is not present.
  For those who are not savvy, C:Program FilesNOS should read C:\Program Files\NOS NOS will be a folder that is inside the Program Files folder in the root of the C: drive.
  
  
  Just a typo, folks. :)

  4.3.2010 13:13 #3