Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: InfoSec Handlers Diary Blog - Adobe flash player vuln InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Adobe flash player vuln

Published: 2008-05-27
Last Updated: 2008-05-28 23:15:20 UTC
by Adrien de Beaupre (Version: 3)
0 comment(s)

A vulnerability has been reported in Adobe Flash Player versions 9.0.124.0 and older, which is the current version available for download now. Adobe has not yet released a patch nor an official advisory. Stay tuned for further developments. Thanks to Steven and Adrien for letting us know

Update1: Symantec has observed that this issue is being actively exploited in the wild and have elevated their ThreatCon.

Update2: A SecurityFocus article is now live here.

Final update:

Updated: May 28 2008 07:53PM - "...Further research indicates that this vulnerability is the same issue described in BID 28695** (Adobe Flash Player Multimedia File Remote Buffer Overflow Vulnerability), so this BID is being retired

Cheers,
Adrien de Beaupré
Bell Canada, Professional Services

0 comment(s)
Diary Archives