Adobe Patches Flash Zero-Day Used in South Korean Attacks

Critical flaw is one of two critical use-after-free vulnerabilities in Flash fixed today by the software firm.

Adobe issued its planned security update today for a previously unknown vulnerability in Flash Player that was
exploited in targeted attacks against South Korean individuals
. The software firm last week promised to patch the critical use-after-free bug, which was discovered and reported by South Koreas Computer Emergency Response Team.
The attacks, believed to be the handiwork of a state-sponsored campaign by North Korea, inserted malicious Flash content inside Microsoft Office documents emailed to the victims. The vulnerability (CVE-2018-4878) allows remote code execution.
Adobe in its Flash update also patched a second critical use-after-free flaw in Flash, CVE-2018-4877, which also allows an attacker to remotely execute code on the victims machine.
For details on the security update, see Adobes advisory
here
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
Adobe Patches Flash Zero-Day Used in South Korean Attacks