Adobe 0-day Vulnerability Leads to Remote Code Execution (Oct 31, 2016)

Adobe recently released an update to the Adobe Flash Player to address a 0-day vulnerability, which they claim is being exploited in limited targeted attacks. The vulnerability, CVE-2016-7855, is a use-after-free vulnerability. An attacker could exploit this vulnerability remotely by crafting an SWF file, such as embedded in a HTML file. A successful attack could cause arbitrary code execution with the privilege of the current running process

Dell SonicWALL Threat Research Team has written the following signature that helps protect our customers from this attack:

  • SPY:2005 Malformed-File swf.MP.501