homepage Welcome to WebmasterWorld Guest from 54.234.7.161
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / Code, Content, and Presentation / Flash and Shockwave
Forum Library, Charter, Moderator: open

Flash and Shockwave Forum

    
Adobe warns of new Reader and Flash security problems
travelin cat

WebmasterWorld Administrator travelin_cat us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 4079208 posted 7:32 pm on Feb 12, 2010 (gmt 0)

Adobe yesterday warned of new critical holes in Reader and Flash Player:

A critical vulnerability has been identified in Adobe Flash Player version 10.0.42.34 and earlier. This vulnerability (CVE-2010-0186) could subvert the domain sandbox and make unauthorized cross-domain requests.

Adobe recommends users of Adobe Flash Player 10.0.42.34 and earlier versions update to Adobe Flash Player 10.0.45.2. Adobe recommends users of Adobe AIR version 1.5.3.1920 and earlier versions update to Adobe AIR 1.5.3.1930.


Adobe is planning to release an update for Adobe Reader 9.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3 for Windows and Macintosh, and Adobe Reader 8.2 and Acrobat 8.2 for Windows and Macintosh to resolve critical security issues, including the Flash Player issue described in Security Bulletin APSB10-06. Adobe expects to make these updates available on February 16, 2010.


More from Adobe here. [adobe.com]

and here [adobe.com]

 

JS_Harris

WebmasterWorld Senior Member 5+ Year Member



 
Msg#: 4079208 posted 11:51 am on Feb 15, 2010 (gmt 0)

Adobe needs to stop crashing my computer while attempting to download updates to fix these things too.

driller41

5+ Year Member



 
Msg#: 4079208 posted 1:19 pm on Feb 15, 2010 (gmt 0)

This is the reason I do not install their software - I can do without reader, unfortunately I still need flash plugin - is there a better/more secure alternative.

ChanandlerBong

5+ Year Member



 
Msg#: 4079208 posted 2:30 pm on Feb 15, 2010 (gmt 0)

I finally got rid of adobe reader a year ago and use foxit which has a footprint about 10% the size without the phoning home and auto updates.

UserFriendly

5+ Year Member



 
Msg#: 4079208 posted 4:14 pm on Feb 15, 2010 (gmt 0)

I really wish there was more competition in the "Flash" player field. With Adobe's the only real solution at the moment, it's the Windows giant-target problem all over again. Endless exploits all aimed at the one thing that everyone will be running.

(I have tried SWFdec and Gnash but they both failed to make sense of the obscenely complex sites that prevail these days.)

If you need (or just enjoy) the "dynamic" content, make sure you're using something like the Firefox add-ons NoScript and "Request Policy" which make it much less likely you'll be stung by drive-by attacks.

Damaeus



 
Msg#: 4079208 posted 11:23 pm on Apr 6, 2010 (gmt 0)

Well, the problem is that so many websites can't simply post their information in HTML with "fancy Flash graphics". They want to turn the whole page into some application with attempts to protect their so-called "intellectual property" by making it impossible to copy and paste the text. I have tried running NoScript in Firefox, but so many websites end up looking strange without all the content displayed.

I don't mind seeing a "pretty page". I just wish more webmasters would be minimalists with regards to running scripts.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Code, Content, and Presentation / Flash and Shockwave
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved