Adobe Flash has 8 of the Top 10 Vulnerabilities Used by Exploit Kits

November 9, 2015—Recorded Future collated thousands of sources from the web and found out Adobe Flash Player has the most vulnerabilities used by exploit kits. Spanning the period of January 1, 2015 to September 30, 2015, Adobe Flash Player flaws account for eight of the top ten spots of the most used vulnerabilities by exploit kits. The other two most leveraged bugs are the Microsoft Internet Explorer versions 10 and 11 (CVE-2015-2419) and Microsoft products including Silverlight (CVE-2015-1671).

Adobe
The top vulnerability affects Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux (CVE 2015-0313). It allows for remote execution and has been exploited in the wild in February 2015. It had been patched since then.

Comments are closed.