Threat Monitor
Exploit.SWF.Agent.bs
| Aliase: | |
|---|---|
| Pattern: | 200907291330 |
| Threat Typ | Verbreitung | Betroffene Systeme | Gefährlichkeit |
|---|---|---|---|
|
|
|
|
This malicious program exploits vulnerability CVE-2009-1862.
Adobe Flash is prone to a remote code-execution vulnerability. The vulnerability is caused due to an error in authplay.dll when processing a malicious SWF to it. By persuading a victim to visit a specially-crafted Web site containing a specially crafted Flash (SWF) file or send a malicious Flash application in a PDF file via e-mail will trigger this vulnerability. Successful exploits may allow the attacker take control of the affected system and execute arbitrary code in the system. The sample contains a specially crafted SWF file. The sample dropped a Trojan into the system when it ran.
Affected Versions:
Adobe Acrobat 9.x
Adobe Flash Player 9.x
Adobe Flash Player 10.x
Adobe Reader 9.x
Adobe Flash is prone to a remote code-execution vulnerability. The vulnerability is caused due to an error in authplay.dll when processing a malicious SWF to it. By persuading a victim to visit a specially-crafted Web site containing a specially crafted Flash (SWF) file or send a malicious Flash application in a PDF file via e-mail will trigger this vulnerability. Successful exploits may allow the attacker take control of the affected system and execute arbitrary code in the system. The sample contains a specially crafted SWF file. The sample dropped a Trojan into the system when it ran.
Affected Versions:
Adobe Acrobat 9.x
Adobe Flash Player 9.x
Adobe Flash Player 10.x
Adobe Reader 9.x
