SECOND Flash zero-day emerges from Hacking Team leak
The use-after-free() programming flaw, for which no patch exists and is identified as CVE-2015-5122, is similar to the CVE-2015-5119 Flash bug patched last week. The 5122 bug lets malicious Flash files execute code on victims' computers and install malware. The bug is present in the Windows, Linux and OS X builds of the plugin.
Both the 5119 and 5122 vulnerabilities were documented in stolen files leaked online from spyware maker Hacking Team. The Italian biz's surveillance-ware exploits the vulnerabilities to infect computers, and these monitoring tools are sold to countries including Saudi Arabia, Sudan, Russia and the US.
Everyone with Flash installed should remove or disable the software until the critical security bug is patched, or at least enable "click to play" in their browsers so that you know exactly what you're running on your system rather than letting websites play malicious Flash files silently in the background without warning or permission.
Adobe said the newly discovered flaw will be patched sometime next week:
A critical vulnerability (CVE-2015-5122) has been identified in Adobe Flash Player http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_20...
Both the 5119 and 5122 vulnerabilities were documented in stolen files leaked online from spyware maker Hacking Team. The Italian biz's surveillance-ware exploits the vulnerabilities to infect computers, and these monitoring tools are sold to countries including Saudi Arabia, Sudan, Russia and the US.
Everyone with Flash installed should remove or disable the software until the critical security bug is patched, or at least enable "click to play" in their browsers so that you know exactly what you're running on your system rather than letting websites play malicious Flash files silently in the background without warning or permission.
Adobe said the newly discovered flaw will be patched sometime next week:
A critical vulnerability (CVE-2015-5122) has been identified in Adobe Flash Player http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_20...
Replies to This Discussion
-
Permalink Reply by truth on
-
Clean your computer in minutes with Zemana AntiMalware!
https://www.zemana.com/AntiMalware
"Destroying the New World Order"
THANK YOU FOR SUPPORTING THE SITE!
Latest Activity
- Top News
- Everything
Shadows Across the Land
Shadows Across the Land Watching the storm coming over the horizon somedayWondering when reality…See More
Geoengineering Watch Global Alert News, May 4, 2024, # 456 ( Dane Wigington )
https://www.GeoengineeringWatch.orgTo support Geoengineering Watch: http://www.geoengineeringwatch.org/support/Contact us: Dane Wigington, P.O. Box 9, Bella ...
Deliverance - Prince
From the unreleased EP "Deliverance", which was assembled by a sound designer who intended for its posthumous release on the one-year anniversary of Prince's...
He’s EXPOSING how the West brought war to Ukraine, and they don’t like it | Redacted News
✅Videos we recommend: https://www.youtube.com/playlist?list=PLZdhTWJ6YawrVRcYeuCmiK6BLnkSprAtpAuthor Benjamin Abelow sits down with Clayton Morris to discuss...
"Two weeks ago, West Tennessee, Arkansas, Oklahoma and all points South were used as a Staging…"
gvIKn.qR4e-small-MAJOR-MEAT-COMPANY-INVESTS
"What, in the late years of their lives, is driving these people to commit such evil crimes against…"
"The sad state of the modern medicine"
Journalism as we know it
By Burbia The direction of journalism has taken is odious. First we have yellow journalism. This…See More
© 2024 Created by truth.
Powered by
