====================================================================

                             CERT-Renater

                 Note d'Information No. 2020/VULN390
_____________________________________________________________________

DATE                : 15/07/2020

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Adobe Download Manager versions
                                     prior to 2.0.0.529.

=====================================================================
https://helpx.adobe.com/security/products/adm/apsb20-49.html
_____________________________________________________________________

Security Updates Available for Adobe Download Manager | APSB20-49
Bulletin ID 	Date Published 	Priority
APSB20-49 	July 14, 2020 	3


Summary

Adobe has released a security update for the Adobe Download Manager for
Windows.  This update resolves a critical vulnerability that could lead
to arbitrary code execution.  


Affected Versions

Product                 Version         Platform
Adobe Download Manager 	2.0.0.518       Windows


Solution

Product 	Version 	Platform 	Priority Rating 	Availability

Adobe Download Manager    2.0.0.529 	Windows     3
Adobe Reader for Windows from http://get.adobe.com/reader/
Adobe Flash Player for Windows from http://get.adobe.com/flashplayer/


Vulnerability details

Vulnerability Category 	Vulnerability Impact 	Severity 	CVE Numbers
Command Injection  Arbitrary Code Execution   Critical 	CVE-2020-9688


Acknowledgements

Adobe would like to thank Dhiraj Mishra  (@RandomDhiraj) for reporting
this issue and for working with Adobe to help protect our customers.

=========================================================
+ CERT-RENATER        | tel : 01-53-94-20-44            +
+ 23/25 Rue Daviel    | fax : 01-53-94-20-41            +
+ 75013 Paris         | email:cert@support.renater.fr   +
=========================================================