SECOND Flash zero-day emerges from Hacking Team leak
The use-after-free() programming flaw, for which no patch exists and is identified as CVE-2015-5122, is similar to the CVE-2015-5119 Flash bug patched last week. The 5122 bug lets malicious Flash files execute code on victims' computers and install malware. The bug is present in the Windows, Linux and OS X builds of the plugin.
Both the 5119 and 5122 vulnerabilities were documented in stolen files leaked online from spyware maker Hacking Team. The Italian biz's surveillance-ware exploits the vulnerabilities to infect computers, and these monitoring tools are sold to countries including Saudi Arabia, Sudan, Russia and the US.
Everyone with Flash installed should remove or disable the software until the critical security bug is patched, or at least enable "click to play" in their browsers so that you know exactly what you're running on your system rather than letting websites play malicious Flash files silently in the background without warning or permission.
Adobe said the newly discovered flaw will be patched sometime next week:
A critical vulnerability (CVE-2015-5122) has been identified in Adobe Flash Player http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_20...
Both the 5119 and 5122 vulnerabilities were documented in stolen files leaked online from spyware maker Hacking Team. The Italian biz's surveillance-ware exploits the vulnerabilities to infect computers, and these monitoring tools are sold to countries including Saudi Arabia, Sudan, Russia and the US.
Everyone with Flash installed should remove or disable the software until the critical security bug is patched, or at least enable "click to play" in their browsers so that you know exactly what you're running on your system rather than letting websites play malicious Flash files silently in the background without warning or permission.
Adobe said the newly discovered flaw will be patched sometime next week:
A critical vulnerability (CVE-2015-5122) has been identified in Adobe Flash Player http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_20...
Replies to This Discussion
-
Permalink Reply by truth on
-
Clean your computer in minutes with Zemana AntiMalware!
https://www.zemana.com/AntiMalware
"Destroying the New World Order"
THANK YOU FOR SUPPORTING THE SITE!
Latest Activity
- Top News
- Everything
The Cartel
"In his 1995 book; Bloodlines of the illuminati, Frits Sringmaier listed the following 13…"
"This falls in the category of political assassination, a very shameful policy of eliminating people…"
"cheeki kea Thank you, just one thing. The Choctaw Indian who came to the rescue was a war veteran…"
"Well that is one fine story you've got going there Doc V. with a very interesting roll up. I…"
"Just another bizarre chapter in WWII that seems more suspect as paranormal."
Former President Trump?
When was this article written? It is attributed to Victor Davis Hanson. He is a Fellow at Hoover…See More
"It must be an unintended mistake "former". But that Trump demanded to keep Khan away is a…"
"Quite an uplifting story of the winter war. Finland was overpowered by ten to one and could still…"
Elon Weighs in on Charlie Kirk's Assassination and How it is an Instrument of Social Control
For a very long time now there has been in place mass population behavioral control operations that…See More
"Less Prone Thanks Buddy I worked on it for 3 days! "
"You have spun a great story, congratulations!"
© 2025 Created by truth.
Powered by
