Previous
Adobe investigates zero-day Flash attacks
News On Wednesday, researchers at Symantec announced that they have uncovered attacks where malicious Adobe Acrobat PDF files are exploiting a vulnerability in Flash and dropping Trojans onto computers. In a post on its website, Adobe said it "is aware...
[July 23, 2009, 17:05]
Adobe plugs Flash-player hole
News The vulnerability is critical for one for Adobe Flash Player 10.0.12.36 and earlier versions, the company said in an advisory. To exploit the vulnerability, a targeted user must load a malicious Shockwave Flash file, which can be done by social...
[February 26, 2009, 10:29]
Macromedia Flash has critical vulnerability
News The vulnerability, in Flash Player version 7.0.19.0 and earlier, could allow a hacker to compromise a user's PC. To see more details on the vulnerability, and download the updated version, click here.
[November 7, 2005, 16:10]
Adobe to plug critical Flash hole next week
News The vulnerability exists in current versions of Flash Player for Windows, Macintosh and Linux and the authplay.dll component that ships with Adobe Reader and Acrobat v9.x for those same platforms, Adobe said in an advisory.
[July 24, 2009, 9:15]
Flash Player allows attacks on Windows, Linux
News Macromedia has warned that its Flash Player, a ubiquitous application for playing multimedia files, has a vulnerability that could allow attackers to run malicious code on Windows and Unix-based operating systems.
[August 12, 2002, 12:50]
Adobe patches critical Flash hole
News The vulnerability affected a file that shipped with Flash Player 9.x and 10.x for Windows, Mac OS X and Linux, and with Adobe Reader and Adobe Acrobat 9.x for Windows, Macintosh and Unix. In an earlier advisory about the problem, Adobe said: "There...
[July 31, 2009, 8:28]
Compromised in a Flash
News The vulnerability, found by security firm eEye Digital Security, allows an attacker to create a hand-edited Macromedia Flash, or SWF, file that can compromise a PC or Macintosh if its user views the file with the Shockwave Flash Player plug-in for...
[December 18, 2002, 8:20]
ActiveX flaw exposes Flash users to hackers
News Marc Maiffret, chief hacking officer at eEye, attributed the Macromedia Flash flaw to a buffer overflow vulnerability connected to an ActiveX control called Flash.ocx. EEye said it had confirmed the vulnerability in Flash Version 6, revision 23...
[May 3, 2002, 15:56]
Macromedia investigates Flash security
News Although the author of the alert suggests the vulnerability could be exploited to upload viruses, Trojan horses or other malicious code to a computer with Flash installed, one security expert thinks most users are safe.
[January 4, 2001, 14:24]
Flash attack compromises 20,000 websites
News The flaw, which appears to be a buffer overflow vulnerability, occurs when Flash Player processes a malicious Shockwave Flash (SWF) file. This exploit appears to be taking advantage of a known vulnerability, reported by Mark Dowd of the ISS X-Force...
[May 28, 2008, 12:46]
Browsers beware: new holes in IE and Flash
News This attack is based on a malformed SWF (Flash movie) header vulnerability designated as MPSB02-09 by Macromedia. Flash Player versions prior to 6.0.40.0 have a buffer overflow vulnerability (MPSB02-09) due to the way they treat malformed headers.
[August 27, 2002, 12:24]
New virus first to infect Macromedia Flash
News But whenever a new vulnerability like this is found, other copycats tend to create more malicious variants. Macromedia went even further, calling the vulnerability through which the virus spread "not that serious".
[January 9, 2002, 9:34]
Adobe and Sun release critical patches
News The Sun update links to a patch for a buffer overflow vulnerability in the image-parsing code in the Java Runtime Environment that may allow an untrusted applet or application to elevate its privileges.
[July 16, 2007, 12:47]
Attacks puzzle open-source community
News It took two separate attacks on the site to spot the security vulnerability, Stratford explained. Stratford has since taken steps to eliminate the security vulnerability. A recent spate of attacks on Macromedia Flash developer community Web sites...
[February 13, 2004, 9:50]
Microsoft issues critical patches
News An attacker could exploit the vulnerability by constructing a specially crafted message that could potentially allow remote code execution when an Exchange Server processes an email with certain.properties," according to Microsoft's bulletin.
[May 10, 2006, 9:15]
Is Sony BMG spreading malware?
News In addition, eEye Digital Security has identified a critical vulnerability that involves a remotely exploitable arbitrary command.For more, click here.execution threat in Macromedia Flash Player versions 7.0.19.0 and earlier.
[November 9, 2005, 13:55]
Firefox updates tackle 12 security flaws
News This vulnerability can be exploited by modifying certain properties of a file input element before it has finished initialising. This vulnerability could be used by an attacker to steal private information from a victim who is logged into a website...
[November 14, 2008, 8:02]
Twitter plays host to data-stealing malware
News In his first dated post, Raff wrote about a vulnerability that allows an attacker to force someone to follow them automatically. The vulnerability could still be exploited on Internet Explorer, he wrote on Monday in the US.
[August 6, 2008, 13:04]
ActiveX 'feature' puts Office at risk
News The vulnerability was reported by researcher Debasis Mohanty. The issue relates to the ability to load ActiveX controls in an Office document and is not a vulnerability but an Office feature, a Microsoft representative said.
[June 23, 2006, 8:55]
Adobe addresses Flash Player 'clickjacking' flaw
News Flash Player 10, released on Wednesday, includes a fix for the clickjacking vulnerability published by researchers Jeremiah Grossman and Robert Hansen earlier this month. Adobe has addressed a security flaw in its Flash Player products that could...
[October 16, 2008, 12:53]
