CVE number: CVE-2015-7645, CVE-2015-7647, CVE-2015-7648
Adobe has released security updates for Adobe Flash Player.
These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.
According to Trend Labs, the Pawn Storm threat actor used an exploit leveraging CVE-2015-7645 to target many foreign affairs ministries all around the world.
The targets were sent spear-phishing emails that contained URLs leading to the exploit. The emails (especially the email subjects and URL strings) were crafted to suggest that they were regarding news articles pertaining to recent events.
