Gator, a popular application that fills in Web site passwords and forms, contains a security flaw that puts users' computer files at risk, security experts said. According to a security warning issued this week from Eyeonsecurity.com, the ActiveX plug-in used to download Gator can be manipulated by a malicious programmer to install back-door software, including a Trojan horse virus.
The Redwood City, Calif.-based company said it became aware of the security vulnerability this morning and that it plans to issue a patch on its Web site late Friday.
Gator, which has been downloaded by more than 10 million people, runs in the backdrop of a Web browser and is often bundled with popular file-sharing programs such as AudioGalaxy. The free software is supported by advertising revenue from its own bundled program, OfferCompanion, which delivers promotions to browsers as consumers surf the Web.