New Adobe Flash Vulnerability

By Roger on May 27, 2008 11:50 PM | | Comments (0) | TrackBacks (0)

There were multiple reports today of an unpatched Adobe Flash vulnerability currently being exploited.

Symantec Bugtraq reports that this exploitation is fairly widespread.SQL injection has been used to insert code onto otherwise legitimate websites that results malware loading to exploit Flash.

Not a lot to be done. You could crawl into the Firefox/noscript cave. I'd suggest having that as an option, but in general keep the antivirus updated and make sure you you're Flash is patched so you aren't exploited by old attacks. Buckle your safety belts it could get bumpy.

UPDATE:
Further reports indicate that this is not a zero day vulnerability. It is exploiting unpatched versions of Flash. Make sure every browser installed is running the current version of flash. IE and Mozilla based browsers use a different Flash install.

Categories

General

Tags

0 TrackBacks

Listed below are links to blogs that reference this entry: New Adobe Flash Vulnerability.

TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/732

Leave a comment

Powered by Ajax Comments

About this Entry

This page contains a single entry by Roger published on May 27, 2008 11:50 PM.

Managing Emotions Under Pressure - part 2 was the previous entry in this blog.

Notes Internet Password Field is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search