Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2009-2564

Published: 21/07/2009 Updated: 10/10/2018
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 730
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Getplus Download Manager

Vulnerability Summary

NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager prior to 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. NOTE: within Adobe Reader, the scope of this issue is limited because the program is deleted and the associated service is not automatically launched after a successful installation and reboot.

Vulnerable Product Search on Vulmon Subscribe to Product

nos_microsystems getplus_download_manager 1.6.2.36

adobe acrobat_reader 9.1

adobe acrobat_reader 9.0

corel getplus download manager 1.5.0.48

Exploits

Exploit DB: Adobe Acrobat 9.1.2 NOS - Local Privilege Escalation
/* alwaysdirtynevercleanc AKA Adobe Acrobat 912 NOS Local Privilege Escalation Exploit (alwaysdirtynevercleanzip) BY Jeremy Brown 2009 [0xjbrown41@gmailcom] 07212009 *********************************************************************************************************** I've been up for nearly 24 hours (only the last few doing research th ...
Exploit DB: Adobe 9.x Related Service - 'getPlus_HelperSvc.exe' Local Privilege Escalation
Adobe related service (getPlus_HelperSvcexe) local elevation of privileges by Nine:Situations:Group site: retrogodaltervistaorg/ description: Adobe downloader used to download updates for Adobe applications Shipped with Acrobat Reader 9x vendor: Nos Microsystems poc: C:\>sc qc "getPlus(R) Helper" [SC] GetServiceConfig SUCCESS SE ...

References

CWE-264http://secunia.com/advisories/35930http://www.vupen.com/english/advisories/2009/1969http://www.securityfocus.com/bid/35740http://retrogod.altervista.org/9sg_adobe_local.htmlhttp://blogs.adobe.com/psirt/2009/07/local_privilege_escalation_in.htmlhttp://securitytracker.com/id?1023007http://www.vupen.com/english/advisories/2009/2898http://www.us-cert.gov/cas/techalerts/TA09-286B.htmlhttp://www.adobe.com/support/security/bulletins/apsb09-15.htmlhttp://secunia.com/advisories/36331https://exchange.xforce.ibmcloud.com/vulnerabilities/54383https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5719http://www.exploit-db.com/exploits/9199http://www.securityfocus.com/archive/1/505095/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/9223/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook