Adobe Advises on Critical Flash Bug Exploited in the Wild

March 16, 2011

Adobe Advises on Critical Flash Bug Exploited in the Wild

PC Magazine, By Larry Seltzer

Adobe has revealed that an unpatched Flash Player vulnerability could allow for denial of service or remote code execution on the system. Because they include Flash player functionality, Acrobat and Reader are also affected.

Roel Schouwenberg, a senior malware researcher at Kaspersky, has already blogged on the matter and makes the point that the really strange part of it is that you can embed Flash objects in an Excel file.

"As such, it would be great if Microsoft would allow us to turn off these excess features. Or, alternatively, Adobe could disallow such integration to reduce the attack surface," Schouwenberg wrote. "The reason why the attackers are using Excel as a delivery vehicle is simple. This way the attack can easily be delivered through email. So be extra cautious when you receive XLS files you didn't request."

Full Article

Adobe Advises on Critical Flash Bug Exploited in the Wild

Kaspersky

Adobe Advises on Critical Flash Bug Exploited in the Wild

About Kaspersky

Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect individuals, businesses, critical infrastructure, and governments around the globe. The company’s comprehensive security portfolio includes leading digital life protection for personal devices, specialized security products and services for companies, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help millions of individuals and nearly 200,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

Share with your friends

Adobe Advises on Critical Flash Bug Exploited in the Wild

Adobe Advises on Critical Flash Bug Exploited in the Wild

About Kaspersky

Related Articles Press Releases

Kaspersky Lab Joins Forces with Merchant Risk Council to Help Combat eCommerce Fraud

Kaspersky Lab North America Recognized on CRN’s 2018 Security 100 List

Kaspersky Lab North America Releases its Inaugural Corporate Social Responsibility Report

Kaspersky Lab Appeals U.S. Department of Homeland Security Debarment

Poor Security Practices put Cloud-Driven Business Growth and Cost Savings at Risk

Kaspersky Lab Story of the Year 2017: More Than One Quarter of Ransomware Attacks Target Businesses

Kaspersky Lab Survey: IT Security Experts Uncertain on How to Combat Targeted Attacks

Kaspersky Lab Creates Pop-Up Shop Experience Using New Currency to Showcase the Value of Personal Data

Kaspersky Lab Enters Endpoint Detection and Response Market with New Solution

Kaspersky Lab North America Champions National Cyber Security Awareness Month 2017