1. Summary

A critical vulnerability has been identified in the Adobe Download Manager. This vulnerability (CVE-2010-0189) could potentially allow an attacker to download and install unauthorized software onto a user's system.

2. Affected Software Versions

Adobe Download Manager on Windows

3. Solution

Users can verify they are not vulnerable to this Adobe Download Manager issue by following the instructions below:

   - Ensure that the C:\Program Files\NOS\ folder and its contents ("NOS files") are not present
      on your system. (If the folder is present, follow the steps below to remove).
   - Click "Start" > "Run" and type "services.msc".
      Ensure that "getPlus(R) Helper" is not present in the list of services.

   If the NOS files are found, the Adobe Download Manager issue can be mitigated by:

   - Navigating to Start > Control Panel > Add or Remove Programs > Adobe Download Manager,
      and selecting Remove to remove the Adobe Download Manager from your system.

   or

   - Clicking "Start" > "Run" and typing "services.msc".
      Then deleting "getPlus(R) Helper" from the list of services.
   - Then delete the C:\Program Files\NOS\ folder and its contents.

4. Link

http://www.adobe.com/support/security/bulletins/apsb10-08.html