Mr Show – McHutchence vs Greeley III
SecurityFocus advisory yesterday (updated today): Adobe Flash Player SWF File Unspecified Remote Code Execution Vulnerability.
And currently from Symantec ThreatCon:
The DeepSight ThreatCon currently at Level 2 in response to the discovery of in-the-wild exploitation of a vulnerability affecting Adobe Flash Player. The flaw occurs when processing a malicious SWF file. Originally it was believed that this issue was unpatched and unknown, but further technical analysis has revealed that it is very similar to the previously reported Adobe Flash Player Multimedia File Remote Buffer Overflow Vulnerability (BID 28695), discovered by Mark Dowd of IBM. However, we are working with Adobe to identify the precise details, because we have observed the malicious files affecting patched versions of Flash, suggesting that it may be a variant or may have been incorrectly patched. We have begun to observe numerous attacks. […MORE…]
Flash is teh 3\/iL.
Your email address will not be published. Required fields are marked *
Notify me of follow-up comments by email.
Notify me of new posts by email.