Revision Date: | 2013-08-12 | Version: | 17 | Title: | Adobe Reader and Acrobat getPlus_HelperSvc.exe) local elevation of privileges | Description: | NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. NOTE: within Adobe Reader, the scope of this issue is limited because the program is deleted and the associated service is not automatically launched after a successful installation and reboot. | Family: | windows | Class: | vulnerability | Status: | ACCEPTED | Reference(s): | CVE-2009-2564
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP
| Product(s): | Adobe Acrobat Adobe Reader
| Definition Synopsis | Adobe Reader 7 Adobe Reader 7 Series is installed
AND Adobe Reader 7, the sub-version is vulnerable
Adobe Reader is less than 7.1.4
OR Adobe Reader library is less than 7.1.4.2009100300
OR Adobe Reader 8
Adobe Reader 8 Series is installed
AND Adobe Reader 8, the sub-version is vulnerable
Adobe Reader is less than 8.1.7
OR Adobe Reader library is less than 8.1.7.59
OR Adobe Reader 9
Adobe Reader 9 Series is installed
AND Adobe Reader 9, the sub-version is vulnerable
Adobe Reader is less than 9.2.0
OR Adobe Reader library is less than 9.1.0.2009022700
OR Adobe Acrobat 7
Adobe Acrobat 7 Series is installed
AND Adobe Acrobat 7, the sub-version is vulnerable
Adobe Acrobat is less than 7.1.4
OR Adobe Acrobat library is less than 7.1.4.2009100300
OR Adobe Acrobat 8
Adobe Acrobat 8 Series is installed
AND Adobe Acrobat 8, the sub-version is vulnerable
Adobe Acrobat is less than 8.1.7
OR Adobe Acrobat library is less than 8.1.7.59
OR Adobe Acrobat 9
Adobe Acrobat 9 Series is installed
AND Adobe Acrobat 8, the sub-version is vulnerable
Adobe Acrobat is less than 9.2.0
OR Adobe Acrobat library is less than 9.1.0.2009022700
|
|