McAfee warns about possible exploits

Written by IT News on 11:03 AM

Hack and spammers seem to work popular in an attempt to search for vulnerabilities in various applications. It appears that the recently discovered used to try to take advantage of one unpatched Adobe Flash vulnerability. According to one post yesterday of McAfee AVERT Labs, the security company has received a number of samples used by many different sources of spam domains.

McAfee were samples of these allegations very seriously and began investigations on the matter. It seems that while you browse the sites that serve these SWF spirit McAfee found a link leading to mass recently reported hacks. As in early May reported attacks infected sites, reference external script, which for this new Adobe Flash-related vulnerability appears to be one SWF file. Apparently this SWF file leads to a similar name WIN% 209,0124,0 i.swf (WIN 9,0124,0 i.swf). The file is now offline.

McAfee is unable to confirm that this last SWF file is an attempt to take advantage of the aforementioned Adobe Flash vulnerability, but Symantec, referred to the same domain to serve the earlier exploit. Besides the opening of Symantec, without mentioning any other domain and 2 spirit implies called WIN% 206,0,79,0 ff.swf (WIN 6,0,79,0 ff.swf) and win% 206,0,79 , 0 ie.swf (WIN 6,0,79,0 ie.swf), also offline.

McAfee draws three conclusions from all of the above files. Apparently, the various spirit are built for different versions of Adobe Flash, namely 9.0.124.0 and 6.0.79.0, which are quite old. Versions of operating are suspected to be either available or under development and is expected to focus on other operating systems except Microsoft's Windows. The latter conclusion is that it uses specially designed for the two most used Internet browsing applications, namely Internet Explorer and Firefox.

At present there are no more details available for this security vulnerability, but McAfee promises to provide consumers with more information, as the investigation moves along.