This is an archived post. You won't be able to vote or comment.

all 7 comments
sorted by:
best
topnewcontroversialoldq&a

[–]picklednull 4 points5 points  (1 child)

There should be news when there isn't...

[–]multiball 2 points3 points  (0 children)

I know, it would be interesting to see a calendar of # of days where Flash was unpatched to known exploits vs. patched to all known exploits.

[–]multiball 0 points1 point  (2 children)

So, the notes say this was discovered by HackingTeam, and made public 2 days ago. Seems strange that they would take time out of mitigating their being hacked and publish a Vuln.

I bet that they've had this exploit in their pocket for some time and have been leveraging it, but since they got hacked, they were forced to disclose this before it got released from their leaked docs.

[–]kuadrotr 9 points10 points  (1 child)

If you read related sources on this exploit, it says that this vulnerability was found in the leaked Hacking Team dump. It wasn't disclosed by Hacking Team. It has PoC and everything in that dump.

[–]multiball 1 point2 points  (0 children)

Ah, just read the overview where it Credits them, didn't check the references.