Mass exploitation with Adobe Flash


Mass exploitation with Adobe Flash - Date: 05.29.2008

Threat Type: Malicious Web Site / Malicious Code

Websense Security Labs ThreatSeeker technology has detected thousands of web sites infected with the recent mass JavaScript injection that exploits a vulnerability in Adobe Flash (CVE-2007-0071) to deliver its malicious payload. This attack has been previously mentioned in ISC and Adobe's blog.

This vulnerability is not a 0-day and users with the latest version of Flash Player (version are safe. However, there are still many on older versions of Flash that are unaware of this mass web infection and are susceptible to this drive-by attack. An update to the latest version of Flash Player is highly recommended.


formatting link

Reply to
Monty Solomon
Loading thread data ... Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.