Overclock.net › Forums › Industry News › Software News › [DT]Adobe Discovers "Critical" Security Flaw in Flash, Won't Patch until Next Week
New Posts  All Forums:Forum Nav:

[DT]Adobe Discovers "Critical" Security Flaw in Flash, Won't Patch until Next Week

post #1 of 3
Thread Starter 
Vulnerability is being actively exploited

http://www.dailytech.com/article.aspx?newsid=21139
Quote:
Another critical vulnerability in Flash was announced by Adobe this week. The latest in a string of high profile flaws afflicting its PDF and Flash formats, the news adds fuel to the fire of the company's detractors

Among those detractors is Apple CEO Steve Jobs who has spewed vehemence about Adobe over the last year, claiming Flash crashed Macs, was buggy, insecure, and ate up battery life. Adobe and Apple enjoy a rather curious relationship given the fact that Apple users account for a significant portion of the sales of Adobe's lucrative Creative Studio Suite.

While Mr. Jobs' stance on Flash is somewhat extremist, Adobe is certainly taking its sweet time with getting patches to these critical flaws out the door. The latest flaw, which affects Flash, Adobe PDF Reader, and Adobe Acrobat, won't be fixed until next week.

That might be acceptable, except for the fact that malicious users, according to Adobe’s own accounting, are already actively exploiting this vulnerability in the wild.

Hackers/spammers are distributing Excel spreadsheet documents that look innocent, but contain a harmful embedded SWF (Flash) file that exploits the flaw to gain unauthorized access to the victim's system. Adobe says Windows, OS X, and Linux machines alike are all affected by the flaw.

Even Microsoft has taken to trashing Flash (to be fair, Microsoft is trying to promote its own competitive offering -- Silverlight). Of the major players, only Google seems to be firmly supportive of Flash, using its support for the format as a selling point on its Android phones.

(Clicks on infected Flash-containing spreadsheet.) "Oh no I gotz ah virisez!")
Don't open excel spreadsheets from unknown people.

HTML5 bandwagon here we come!
Edited by PoopaScoopa - 3/16/11 at 6:23am
post #2 of 3
Quote:
Originally Posted by PoopaScoopa View Post
Vulnerability is being actively exploited

http://www.dailytech.com/article.aspx?newsid=21139


HTML5 bandwagon here we come!
Wait. Google supports Flash?
Didn't it want to replace it with HTML5?
Lala
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7-750 @ 3.00GHz Intel DP55WB Sapphire HD 5870 @ 950/1200 1.212V Kingston 2x2GB DDR3 1333.3 
Hard DriveOSMonitorPower
1TB WD Black, 1TB WD Green Win 7 Ultimate 64 bit Samsung P2370H Thermaltake ToughPower 750W 
Case
Thermaltake M9 Black 
  hide details  
Reply
Lala
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7-750 @ 3.00GHz Intel DP55WB Sapphire HD 5870 @ 950/1200 1.212V Kingston 2x2GB DDR3 1333.3 
Hard DriveOSMonitorPower
1TB WD Black, 1TB WD Green Win 7 Ultimate 64 bit Samsung P2370H Thermaltake ToughPower 750W 
Case
Thermaltake M9 Black 
  hide details  
Reply
post #3 of 3
Quote:
Originally Posted by __Pat__ View Post
Wait. Google supports Flash?
Didn't it want to replace it with HTML5?
They cant just stop support right now when HTML5 hasn't kicked off yet.. but um yea WebM will be neat
Teh computer
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q8400 MSI MS-7529 HIS icoolerIV 5750 1GB @ 822/1250 Corsair DDR2 2x2 gig 
Hard DriveOSMonitorPower
500 gig HDD SATA @ 7200 rpm Windows 7 32 bit / Ubuntu 10.10 32 bit AOC 22" WLED 1680x1050 Aywun 480W 
Case
Gigabyte gz-x4 
  hide details  
Reply
Teh computer
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q8400 MSI MS-7529 HIS icoolerIV 5750 1GB @ 822/1250 Corsair DDR2 2x2 gig 
Hard DriveOSMonitorPower
500 gig HDD SATA @ 7200 rpm Windows 7 32 bit / Ubuntu 10.10 32 bit AOC 22" WLED 1680x1050 Aywun 480W 
Case
Gigabyte gz-x4 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [DT]Adobe Discovers "Critical" Security Flaw in Flash, Won't Patch until Next Week