Integer overflow in Adobe Flash Player prior to 13.0.0.250 and 14.x and 15.x prior to 15.0.0.189 on Windows and OS X and prior to 11.2.202.411 on Linux, Adobe AIR prior to 15.0.0.293, Adobe AIR SDK prior to 15.0.0.302, and Adobe AIR SDK & Compiler prior to 15.0.0.302 allows malicious users to execute arbitrary code via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe flash_player |
||
adobe flash_player_desktop_runtime |
||
adobe air_desktop_runtime |
||
adobe air_sdk |
||
opensuse evergreen 11.4 |
||
opensuse opensuse 12.3 |
||
opensuse opensuse 13.1 |
||
suse linux enterprise desktop 11 |
Advertisers cry 'f**k AdBlock'
Attackers are using Flash exploits and foisting ransomware through real time advertising bidding networks, FireEye researchers say. The attacks link to malicious or compromised advertising sites which participate in real time bidding systems in which ad inventory is sold to and by publishers. More than 1700 malicious advertising requests have been detected that led to malicious .swf Flash files being downloaded over hundreds of unnamed sites. "We believe this activity is part of an active malver...