SECOND Flash zero-day emerges from Hacking Team leak
The use-after-free() programming flaw, for which no patch exists and is identified as CVE-2015-5122, is similar to the CVE-2015-5119 Flash bug patched last week. The 5122 bug lets malicious Flash files execute code on victims' computers and install malware. The bug is present in the Windows, Linux and OS X builds of the plugin.
Both the 5119 and 5122 vulnerabilities were documented in stolen files leaked online from spyware maker Hacking Team. The Italian biz's surveillance-ware exploits the vulnerabilities to infect computers, and these monitoring tools are sold to countries including Saudi Arabia, Sudan, Russia and the US.
Everyone with Flash installed should remove or disable the software until the critical security bug is patched, or at least enable "click to play" in their browsers so that you know exactly what you're running on your system rather than letting websites play malicious Flash files silently in the background without warning or permission.
Adobe said the newly discovered flaw will be patched sometime next week:
A critical vulnerability (CVE-2015-5122) has been identified in Adobe Flash Player http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_20...
Both the 5119 and 5122 vulnerabilities were documented in stolen files leaked online from spyware maker Hacking Team. The Italian biz's surveillance-ware exploits the vulnerabilities to infect computers, and these monitoring tools are sold to countries including Saudi Arabia, Sudan, Russia and the US.
Everyone with Flash installed should remove or disable the software until the critical security bug is patched, or at least enable "click to play" in their browsers so that you know exactly what you're running on your system rather than letting websites play malicious Flash files silently in the background without warning or permission.
Adobe said the newly discovered flaw will be patched sometime next week:
A critical vulnerability (CVE-2015-5122) has been identified in Adobe Flash Player http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_20...
Replies to This Discussion
-
Permalink Reply by truth on
-
Clean your computer in minutes with Zemana AntiMalware!
https://www.zemana.com/AntiMalware
"Destroying the New World Order"
THANK YOU FOR SUPPORTING THE SITE!
Latest Activity
- Top News
- Everything
How Long does Destabilization Take?
How long does it take to topple a society targeted by the left? What ingredients go into this toxic…See More
"cheeki kea you are spot on. It won't be until the elephant on Wall Street is as high as the…"
"Greetings and welcome to you Gordon it's great to have you join us all here."
"For those trapped in mass formation the ugly truth and all the clues will not be realised until the…"
Dare to Dream/Dare to Build
As we enter the month of Av we intensify our traditional mourning for the Holy Temple, but are we really in touch with what we are mourning for? Are we ready...
"The Chinese sent more than 100 thousand visitors to the US after the failure of the Wuhan lab to…"
© 2026 Created by truth.
Powered by
