CNET Networks site compromise
Threat Type: Malicious Web Site / Malicious Code
The malicious code is observed to exploit a known integer overflow vulnerability in Adobe Flash (CVE-2007-0071). At the time of this alert, the site is still hosting the malicious code. Visitors who are not patched against this vulnerability will be infected without any user interaction.
Screenshot of infected site:
Screenshot of the malicious payload:
Software vulnerable to this attack includes:
- Adobe, Flash Player, 184.108.40.206, and previous
- Adobe, Flex, 3.0
- Adobe, AIR, 1.0
Websense Messaging and Websense Web Security customers are protected against this attack.