Adobe Download Manager Arbitrary File Download (APSB10-08)

Critical Nessus Plugin ID 44939


The remote Windows host has a download manager installed that is prone to an arbitrary file download vulnerability.


The remote Windows host has a version of Adobe Download Manager earlier than installed. Such versions are potentially affected by a vulnerability that allows an attacker to download and install unauthorized software onto a user's system.


Either upgrade to Adobe Download Manager version or uninstall the application.

See Also

Plugin Details

Severity: Critical

ID: 44939

File Name: adobe_download_manager_apsb10-08.nasl

Version: $Revision: 1.11 $

Type: local

Agent: windows

Family: Windows

Published: 2010/03/01

Modified: 2015/01/15

Dependencies: 13855

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:adobe:download_manager

Required KB Items: SMB/Registry/Enumerated

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2010/02/23

Vulnerability Publication Date: 2010/02/18

Reference Information

CVE: CVE-2010-0189

BID: 38313

OSVDB: 62547