قالب وردپرس درنا توس
Home / Mac / Active Adobe Flash Zero-Day Utility Active In-The-Wild

Active Adobe Flash Zero-Day Utility Active In-The-Wild



Same old story. Do not use Flash v28.0.0.137 (or earlier) until Adobe provides an update! The update should be out this coming week. Keep an eye on

The current known attack vector, CVE-2018-4878 is a malicious Microsoft Excel document that contains a malicious Flash object that, when it opens, triggers the installation of ROKRAT ( Remote Administration Tool), which is capable of taking over the infected computer. At this time, the infection vector is believed to originate in North Korea, and is primarily aimed at South Korea.

Adobe Security Advisory:

A critical vulnerability (CVE-2018-4878) exists in Adobe Flash Player 28.0.0.1

37 and earlier versions. Successful exploitation may potentially allow an attacker to take control of the affected system.

Adobe is aware of a report that a utilization for CVE-2018-4878 exists in the ordinary and is used in limited targeted attacks against Windows users. These attacks exploit Office documents with embedded malicious Flash content distributed by email.

Adobe will address this vulnerability in an edition scheduled for the week of February 5th .

More about exploitation from Dan Goodin at Ars Technica :

An Adobe Flash 0day is actively exploited in nature
Adobe plans to get a solution to the critical error next week.

… While the number in-The wild attacks that exploit Flash Zerodays have gone down significantly over the past year or two, the risk from Adobe Media Player is still unacceptably high compared to the advantage it gives most users. And now the vulnerability is circulating, it would not be surprising for other groups to use it against a much wider audience.

[Note that Ars Technica quotes the CVE as “2018-4877” as opposed to 2018-4878. I consider ‘2018-4877’ to be a typo. Sadly, as usual, Dan’s article is being quoted verbatim around the Internet along with the wrong CVE number. Stick with CVE-2018-4878, the CVE identified by Adobe. Because of the precautions taken at CVE.Mitre.org, it’s impossible to identify the differences between these two CVE numbers until after the current zero-day as been patched. Meanwhile, the NIST (National Standards of and Technology) CVE database doesn’t yet list either number. Bureaucracy at work. Zzzz.]

CONCLUSIONS:

Do not use Microsoft Excel
Don & # 39; do not use Adobe Flash

: – Derek


Source link