Adobe Flash Zero day

January 26, 2015

Flash zero day is being exploited in the wild.A critical vulnerability (CVE-2015-0311) exists in Adobe Flash Player and earlier versions for Windows and Macintosh. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. This vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below.

Dell SonicWALL Threat Research Team has researched this vulnerability (CVE-2015-0311) and released the following signature to protect their customers.

  • SPY 3420 : Malformed-File swf.OT.27