Technical Analysis of Flash Player CVE-2012-0779

Microsoft Malware Protection Center (MMPC) posted a technical analysis of malware targeting an Adobe Flash Player (CVE-2012-0779) vulnerability to which Adobe released a critical patch update earlier this month (diary posted here). The technical analysis shows the process how the infection occurs when a malicious document is open. The technical analysis is posted here. Get the latest version of Flash Player here (Flash Player 11.2.202.233 and earlier is vulnerable).

[1] http://isc.sans.edu/diary/Adobe+Security+Flash+Update/13129
[2] http://blogs.technet.com/b/mmpc/archive/2012/05/24/a-technical-analysis-of-adobe-flash-player-cve-2012-0779-vulnerability.aspx
[3] http://get.adobe.com/flashplayer/

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

Guy

528 Posts
ISC Handler
May 25th 2012

Sign Up for Free or Log In to start participating in the conversation!