Kaspersky LabKLA10040KLA10040 RCE vulnerability in Adobe Download Manager
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
98.4%
An unspecified vulnerability was found in Adobe Download Manager. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from network at a point related to a dm.ini file via a stack-based buffer overflow.
Original advisories
Related products
CVE list
CVE-2006-5856 high
Solution
Update to latest version
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Affected Products
- Adobe Download Manager versions 2.1 and earlier
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
98.4%