Thursday, September 18, 2008

HTTP Adobe SWF Remote Code Execution

Apparently an attack was blocked on my computer:

Http Adobe SWF Remote Code Execution
Risk: High
remote machine: ad101com-images.adbeareau.net (96.17.108.107)

Site I was visiting: http://adtmag.com/article.aspx?id=23284
(the ads may rotate)

Network:
OrgName: Akamai Technologies
OrgID: AKAMAI
Address: 8 Cambridge Center
City: Cambridge
StateProv: MA
PostalCode: 02142
Country: US

NetRange: 96.16.0.0 - 96.17.255.255

I just realized that the email came from: AppTrendsNL@1105service.com
http://whois.domaintools.com/1105service.com


Coincidentally, I was just reading about a click attack that Adobe was asking some hackers not to report.