Adobe Download Manager AOM Buffer Overflow Vulnerability
If users in your environment have the ability to install software on their machines, you'll probably find many instances of this installed on your network(s). Adobe Download Manager is the default method used to retrieve the Adobe Reader application from the Internet for installation.
http://secunia.com/advisories/23233/
Description:
A vulnerability has been reported in Adobe
Download Manager, which can be exploited by malicious people to
compromise a user's system.
The vulnerability is caused due to a boundary error when handling
section names in the "dm.ini" file as created by Adobe Download Manager
when processing AOM files. This can be exploited to cause a stack-based
buffer overflow via a specially crafted AOM or "dm.ini" file.
Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious website.
The vulnerability is reported in version 2.1 and earlier.