Adobe Flash has 8 of the Top 10 Vulnerabilities Used by Exploit Kits

November 9, 2015—Recorded Future collated thousands of sources from the web and found out Adobe Flash Player has the most vulnerabilities used by exploit kits. Spanning the period of January 1, 2015 to September 30, 2015, Adobe Flash Player flaws account for eight of the top ten spots of the most used vulnerabilities by exploit kits. The other two most leveraged bugs are the Microsoft Internet Explorer versions 10 and 11 (CVE-2015-2419) and Microsoft products including Silverlight (CVE-2015-1671).

The top vulnerability affects Adobe Flash Player before and 14.x through 16.x before on Windows and OS X and before on Linux (CVE 2015-0313). It allows for remote execution and has been exploited in the wild in February 2015. It had been patched since then.

Comments are closed.