Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Adobe has released a security update fixing a critical flaw in its Download Manager software that could let attackers download and install unauthorised software onto a user's system. The issue applies to any instance of the software downloaded before today, but will not apply to any new versions, the firm said."Adobe Download Manager is designed to remove itself from the computer after use at the next computer restart. However, Adobe recommends users verify that a potentially vulnerable version of the Adobe Download Manager is no longer installed on their machine," said the security bulletin.Adobe credited security researcher Aviv Raff for bringing the flaw to the company's attention."Recently, I found a design flaw on Adobe's web site which allows the abuse of the Adobe Download Manager to force the automatic installation of Adobe products, as well as other software products (e.g. Google Toolbar)," Raff said in a blog post."Instead of admitting that this design flaw is indeed a problem which can be abused by malicious attackers, Adobe decided to downplay this issue."Adobe urged users to see whether the C:\Program Files\NOS\ folder and its contents (NOS files) are present on their system. If they are, the firm recommends running the 'services.msc' prompt and making sure that 'getPlus(R) Helper' is not in the list of services. If it is, it should be removed.
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.