- Joined
- Mar 5, 2002
- Messages
- 25,752
- Reaction score
- 1,211
I seen the above latest 'tellytubby' release and it looked pretty bad, however, while the attack itself is rather comprehensive ... there are at least 3 exploits being tried and their execution is a little involved.
The exploits target vulnerable Adobe Flash players and Microsoft ActiveX Controls. The last exploit has been making the rounds in the wild recently.
Still, the vector being used is the tried and true route of a vulnerable web application. So it's basically the same old hole in a brand new dress. Updating the browser ... good, but doesn't mean you are more secure. Not updating web apps at the same time ... not so good.
