Flash Zero day CVE-2018-15982

December 6, 2018

Adobe Flash Player has  a use after free vulnerability, which allows arbitrary code execution. The malicious swf file exploits this vulnerability to gain access and execute code on the victim’s computer. Adobe has patched this vulnerability.

Adobe flash player plugin crashes when malformed flash file is run in a browser .

SonicWALL Capture Labs provides protection against this threat via following signatures:

IPS 5336 : Malformed-File swf.MP.598

GAV 9914 : CVE-2018-15982