Exploit For Patched Flash Vulnerability Already In Two Exploit Kits

  • 22 October 2014
  • 0 replies
  • 180 views

Userlevel 7
Badge +54
by Michael Mimoso      October 22, 2014

Two notorious exploit kits are already seeding vulnerable websites with exploits for a Flash Player vulnerability that was patched in last week’s Adobe security bulletin.

French researcher Kafeine told Threatpost that the most likely scenario is that a skilled coder found a way to reverse-engineer the Adobe patch in order to build the exploit. Regardless, a week from patch to inclusion in an exploit kit—in this case the Angler and Fiesta EKs—is a harsh reminder of how quickly the window from vulnerability to exploit can slam shut.

“This is really, really fast,” Kafeine said. “The best I remember was maybe three weeks in February 2014.”
 
Full Article

0 replies

Be the first to reply!

Reply