[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Latest flash player is not vulnerable
From:       security curmudgeon <jericho () attrition ! org>
Date:       2008-05-30 20:43:51
Message-ID: Pine.LNX.4.64.0805302043140.28609 () forced ! attrition ! org
[Download RAW message or body]


: Adobe announced that the flaw that is in the wild is not a new one. The 
: attack took the advantage of other security flaws to redirect the user 
: from legitimate sites to malicious domains serving exploit SWFs
: 
: http://blogs.adobe.com/psirt/2008/05/more_information_on_recent_fla.html
: 
: Just for informing for those who missed the news :-)

This was quite the frenzy, all based on some fairly poor vulnerability 
'research' and testing.

http://osvdb.org/blog/?p=246
Whos to blame? The hazard of 0-day.
May 30th, 2008
[prev in list] [next in list] [prev in thread] [next in thread]