EUVD-2009-2559

Malware in sbrugna...

EUVD-2008-5341

Malware in sbrugna...

SUSE CVE-2009-2564

NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlusHelperSvc.exe with insecure permissions Everyone:Full Control, which allows local users to...

SUSE CVE-2009-3958

Multiple stack-based buffer overflows in the NOS Microsystems getPlus Helper ActiveX control before 1.6.2.49 in gp.ocx in the Download Manager in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow remote attackers to execute arbitrary code via...

Adobe GetPlus get_atlcom 1.6.2.48 - ActiveX Remote Exec PoC (0day)

No description provided by source. object id=TestObj classid=CLSID:E2883E8F-472F-4fb0-9522-AC9BF37916A7 style=width:100;height:350 PARAM NAME=cx VALUE=0xFFFFFFFF PARAM NAME=cy VALUE=0xFFFFFFFF PARAM NAME=Service-URL...

Adobe Download Manager getPlus ActiveX Control Buffer Overflow (APSB10-02; CVE-2009-3958)

Adobe Download Manager DLM is a small application that is used to deliver Adobe products over the Internet. It contains licensed technology from NOS Microsystems called "getPlus" to support the transfer of information between Adobe.com and a connected user. A stack buffer overflow vulnerability...

getPlus insufficient domain name validation vulnerability

------------------------------------------------------------------------ getPlus insufficient domain name validation vulnerability ------------------------------------------------------------------------ Yorick Koster, April 2009...

CVE-2010-0189

The CVE-2010-0189 issue targets Adobe Download Manager’s getPlus ActiveX control (NOS Microsystems) version 1.5.2.35, where insufficient domain-name validation allows an attacker to craft a download site name that, when loaded in Internet Explorer with the ActiveX control, could cause the user to...

Adobe GetPlus Active-X Exploit

PARAM NAME="Service-URL"...

Adobe GetPlus get_atlcom ActiveX Remote Exec 0day POC

No description provided by source. Exploit Title: Adobe GetPlus getatlcom ActiveX Remote Exec 0day POC Date: 2010.01.17 Author: superli Software Link: http://get.adobe.com/flashplayer/?promoid=BUIGP Version: 1,6,2,48 Tested on: xpsp3 ie6 Code :...

Adobe GetPlus get_atlcom 1.6.2.48 - ActiveX Remote Execution

Adobe GetPlus getatlcom 1.6.2.48 - ActiveX Remote Execution PARAM NAME="Service-URL"...

Adobe GetPlus get_atlcom v1.6.2.48 ctiveX Remote Exec 0day POC

Exploit for unknown platform in category remote exploits ============================================================== Adobe GetPlus getatlcom v1.6.2.48 ctiveX Remote Exec 0day POC ============================================================== Download: http://www.inj3ct0r.com/sploits/10126.zip...

Adobe GetPlus get_atlcom 1.6.2.48 - ActiveX Remote Execution

PARAM NAME="Service-URL"...

Code injection

NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlusHelperSvc.exe with insecure permissions Everyone:Full Control, which allows local users to...

CVE-2009-2564

NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlusHelperSvc.exe with insecure permissions Everyone:Full Control, which allows local users to...

CVE-2009-2564

CVE-2009-2564 describes a local privilege escalation in the NOS getPlus/GetPlus Download Manager used with Adobe Reader (and possibly Corel GetPlus). The core issue is that getPlus_HelperSvc.exe is installed with insecure permissions (Everyone: Full Control), which allows a local user to replace ...

CVE-2008-5364

Stack-based buffer overflow in the getPlus ActiveX control in gp.ocx 1.2.2.50 in NOS Microsystems getPlus Download Manager, as used for the Adobe Reader 8.1 installation process and other downloads, allows remote attackers to execute arbitrary code via unspecified vectors, a different issue than...

iDefense Security Advisory 11.04.08: Multiple Vendor NOS Microsystems getPlus Downloader Stack Buffer Overflow Vulnerability

iDefense Security Advisory 11.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 04, 2008 I. BACKGROUND The getPlus Download Manager is a software management tool. It is used to download, install, and update other software through the browser. The getPlus Download Manager consists o...

NOS GetPlus download manager ActiveX buffer overflow / Acrobat Reader

No description provided...

NOS Microsystems getPlus ActiveX控件缓冲区溢出漏洞

CVE ID：CVE-2008-4817 NOS Microsystems getPlus是一款下载管理器控件。 NOS Microsystems getPlus控件处理安装文件时存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 存在问题的控件为 getPlus gp.ocx 1.2.2.50，目前证实用于Adobe Reader 8.1的WEB安装使用此控件，要判断此版本控件是否安装，注册表编辑器可用于尝试浏览此注册表键值： HKEYCLASSESROOT\CLSID\CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7...