Adobe has advised users of its Acrobat Reader software to download the latest update to fix a security hole in the Adobe Download Manager software.
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
The company said, "This vulnerability (CVE-2010-0189) could potentially allow an attacker to download and install unauthorised software onto a user's system."
The Adobe Download Manager is intended for one-time use, which means it is removed at the next computer restart. Adobe recommended users verify that a potentially vulnerable version of the Adobe Download Manager is no longer installed on their machine.
To fix the problem users need to ensure that the C:\Program Files\NOS\ folder and its contents ("NOS files") are not present on their PC system.
If NOS is present, Adobe said users need to run "services,msc" to ensure that "getPlus(R) Helper" is not present in the list of services. If it is running, Adobe recommended that users use add/remove programs in Windows to delete the Adobe Download Manager, which should fix the flaw.