What is Swf.Exploit.CVE_2015_5548? Found by ClamXav and quarantined. What is the threat?
iMac, Mac OS X (10.4.10)
Where was it found? If the location is a cache folder, it's likely the same subject discussed on the ClamXav site.
SWF files are Flash data. So in short, it's an infected Flash video that has been cached by the browser. If Flash is up to date on your system, or you don't have Flash installed, it can't do anything. Just delete it.
LiamRio wrote:
What is Swf.Exploit.CVE_2015_5548? Found by ClamXav and quarantined. What is the threat?
It is an malicious Adobe flash file. The official security reference for this particular type of malware is CVE-2015-5548. It can be found documented here https://www.cvedetails.com/cve-details.php?t=1&cve_id=cve-2015-5548
Adobe have since fixed this particular vulnerability in Adobe Flash version 18.0.0.232 as per these release notes.
https://helpx.adobe.com/security/products/flash-player/apsb15-19.html
Regardless of the fact that you may already have a 'fixed' version of Adobe Flash installed or no version of Flash at all installed I would recommend you delete the malicious file.
LiamRio wrote:
What is Swf.Exploit.CVE_2015_5548? Found by ClamXav and quarantined.
It's probably a False Positive. If it was just a cache file, then you can trash it, but if it's an application or part of an Adobe installation, then put it back where it was.
This has all been reported to the Cisco/ClamAV® signature team and the next time you update the definitions for ClamXav it will no longer look for that signature.
Details are on the ClamXav Forum here.
What is Swf.Exploit.CVE_2015_5548
