Security experts believe that Flame developers can use zero-day in the Windows Media Player.
According to a leading expert “Kaspersky Lab” Alexander Gostev, the newly discovered Trojan application is Flame, could exploit previously unknown vulnerabilities in Windows Media Player. This expert said during his speech at the forum Positive Hack Days 2012, organized by Positive Technologies.
“It may have been used zero-day vulnerability in Windows Media Player, – said the guest. According to him, in the 2010 anti-virus experts became aware of the zero-day vulnerability in that the product Microsoft. Around the same time began the active dissemination of Flame.
Recall that, according to experts, Flame was created to carry out espionage in the computer systems of government departments and large companies in the Middle East. It is assumed that the Trojan was developed about two years ago (March 2010) and has not been previously detected due to the complex architecture and targeted attacks of the authors.
At the moment, fairly well known malware propagation methods in the local network, but the mechanism of initial infection remains a mystery. According to Gostev, the theory about the vulnerability of WM Player has gained urgency after the virus was detected in the system as quickly as updates to the software. However, the expert noted that the mode of transmission is only one possible.