QwikSec

Security Database

CVE

CWE

Training

CVE-2009-2564

Published: Jul 21, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. NOTE: within Adobe Reader, the scope of this issue is limited because the program is deleted and the associated service is not automatically launched after a successful installation and reboot.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

exploit

x_refsource_EXPLOIT-DB

third-party-advisory

x_refsource_CERT

vdb-entry

x_refsource_SECTRACK

http://www.adobe.com/support/security/bulletins/apsb09-15.html

x_refsource_CONFIRM

oval:org.mitre.oval:def:5719

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_VUPEN

http://retrogod.altervista.org/9sg_adobe_local.html

x_refsource_MISC

getplus-nos-insecure-permissions(54383)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

20090720 Adobe related service (getPlus_HelperSvc.exe) local elevation of privileges

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

http://blogs.adobe.com/psirt/2009/07/local_privilege_escalation_in.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.