CVE-2009-2564

NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. NOTE: within Adobe Reader, the scope of this issue is limited because the program is deleted and the associated service is not automatically launched after a successful installation and reboot.

Published: Jul 21, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-2564
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
nos_microsystems / getplus_download_manager	1.6.2.36	1.6.2.36.x
adobe / acrobat_reader	9.0	9.0.x
adobe / acrobat_reader	9.1	9.1.x
corel / getplus_download_manager	1.5.0.48	1.5.0.48.x

Vulnerability Database

289,689

CVE-2009-2564