Adobe Patches Flash Zero-Day Used in South Korean Attacks

  /     /     /  
Publicated : 22/11/2024   Category : security


Adobe Patches Flash Zero-Day Used in South Korean Attacks


Critical flaw is one of two critical use-after-free vulnerabilities in Flash fixed today by the software firm.



Adobe issued its planned security update today for a previously unknown vulnerability in Flash Player that was
exploited in targeted attacks against South Korean individuals
. The software firm last week promised to patch the critical use-after-free bug, which was discovered and reported by South Koreas Computer Emergency Response Team.
The attacks, believed to be the handiwork of a state-sponsored campaign by North Korea, inserted malicious Flash content inside Microsoft Office documents emailed to the victims. The vulnerability (CVE-2018-4878) allows remote code execution.
Adobe in its Flash update also patched a second critical use-after-free flaw in Flash, CVE-2018-4877, which also allows an attacker to remotely execute code on the victims machine.
For details on the security update, see Adobes advisory
here
.
 

Last News

▸ Feds probe cyber breaches at JPMorgan, other banks. ◂
Discovered: 23/12/2024
Category: security

▸ Security Problem Growing for Dairy Queen, UPS & Retailers, Back off ◂
Discovered: 23/12/2024
Category: security

▸ Veritabile Defecte de Proiectare a Securitatii in Software -> Top 10 Software Security Design Flaws ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Adobe Patches Flash Zero-Day Used in South Korean Attacks