Zero-Day Flash Exploit Targeting Middle East

Discussion in '0-day Release' started by silversurfer, Jun 8, 2018.

  1. silversurfer

    silversurfer Malware Tester Silver Member

    A zero-day vulnerability is being exploited in the wild in targeted attacks against Windows users in the Middle East, researchers warned Thursday.

    The Flash Player vulnerability (CVE-2018-5002), a stack-based buffer overflow bug that could enable arbitrary code execution, was patched earlier today by Adobe.

    The vulnerability “allows for a maliciously crafted Flash object to execute code on victim computers, which enables an attacker to execute a range of payloads and actions,” researchers from ICEBRG’s Security Research Team, who was the first to report the discovered vuln, said in a Thursday post. It’s particularly dangerous because all that needs to happen for the bug to be triggered is for the victim to open a malicious file.

    Full Article:
    Der.Reisende and RGiskardR like this.
  2. Google Adsense

Share This Page