Adobe Flash Player prior to 11.7.700.252 and 11.8.x and 11.9.x prior to 11.9.900.152 on Windows and Mac OS X and prior to 11.2.202.327 on Linux, Adobe AIR prior to 3.9.0.1210, Adobe AIR SDK prior to 3.9.0.1210, and Adobe AIR SDK & Compiler prior to 3.9.0.1210 allow malicious users to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-5329.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe flash_player |
||
adobe air sdk |
||
adobe air |
Signature-sniffers WILL be fooled – researcher
Common or garden cybercrooks have taken to using steganography – the art of hiding secret information within another image or message file – to run a click-fraud scam. Steganography has long been the stuff of spy trade-craft and cypherpunk novels, but now cybercrooks have made the practice downmarket by applying it to the Lurk malware downloader. Lurk uses an algorithm that can embed encrypted downloader URLs into an image file by inconspicuously manipulating individual pixels. The URLs poin...