Avast WEBforum

Other => Viruses and worms => Topic started by: a4nic8er on October 25, 2008, 09:40:19 AM

Title: Another possible sighting of SWF:CVE-2007-0071 [Expl]
Post by: a4nic8er on October 25, 2008, 09:40:19 AM

My first malware detection by Avast!

2008-10-25   7:49:55 PM   1224917395   SYSTEM   1212   Sign of "SWF:CVE-2007-0071 [Expl]" has been found in "hxxp://www.game-advertising-online.com/b/hc/fs2.swf?clickTAG=http://www.game-advertising-online.com/index.php%3Fsection=redir%26zon=265%26zid=48a398b1e090f" file.

Aborted connection and put game-advertising-online in my hosts file and restricted sites.

Just a heads-up if anyone cares to check if it is a FP.

Title: Re: Another possible sighting of SWF:CVE-2007-0071 [Expl]
Post by: Jtaylor83 on October 25, 2008, 09:49:00 AM

Please disable the link by changing it to hxxp.

LinkScanner found no exploits with this site, so it's an FP.

Title: Re: Another possible sighting of SWF:CVE-2007-0071 [Expl]
Post by: kubecj on October 25, 2008, 07:18:26 PM

Unable to replicate. Flash file downloaded not reported as exploited.

Title: Re: Another possible sighting of SWF:CVE-2007-0071 [Expl]
Post by: Jtaylor83 on October 26, 2008, 06:16:51 AM

It appears to be a vulnerability for those who have earlier versions of Flash Player.

http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=73220

Have you updated to Flash Player 10, a4nic8er? If not, you need to get the latest version here (http://www.adobe.com/products/flashplayer/).

Title: Re: Another possible sighting of SWF:CVE-2007-0071 [Expl]
Post by: a4nic8er on October 27, 2008, 01:43:14 AM

Yes I have (on my main computers), thanks. I discovered the link when I fired up my old Win98SE/Tbird 1200 which I do every few months just to see what may be out there for the unprotected and unwary.