Security News > 2016 > June > Fix for actively exploited Flash Player 0day is out, patch ASAP! (Help Net Security)
2016-06-17 00:59
Adobe has issued a patch for the Plash Player zero-day vulnerability (CVE-2016-4171) that is actively exploited by the ScarCruft APT group. The bug, discovered by Anton Ivanov of Kaspersky Labs, is being used in “limited, targeted attacks.” According to Kaspersky, the group has been spotted using zero-day exploits before, and is currently engaged in two major operations. “The first of them, Operation Daybreak, appears to have been launched by ScarCruft in March 2016 and employs … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/jBT_kUunfUA/
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-06-16 | CVE-2016-4171 | Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016. | 10.0 |