Home / malwarePDF  

Exploit.SWF.Gen


First posted on 21 November 2011.
Source: BitDefender

Aliases :

There are no other names known for Exploit.SWF.Gen.

Explanation :

Specifically crafted SWF(flash files) files allow remote file execution when the client has a vulnerable FlashPlayer.A malformed SWF record's value triggers a buffer overflow. The size of the SWF files vary. Usually it's a download and execute shellcode used to download and run a PasswordStealer trojan. It seems that all versions of flashplayer up to 9.0.124.0 are vulnerable ( though we saw malicious pages trying to exploit only version 115 and 47). We recommend keeping FlashPlayer up to date.. Also, keep the BitDefender shield active.

Last update 21 November 2011

 

TOP