Main Area and Open Discussion > Living Room

New flash player vulnerability (affects Adobe Reader as well)

<< < (2/2)

mouser:
Temporary fix here:
http://community.ca.com/blogs/securityadvisor/archive/2010/06/06/zero-day-attack-in-adobe-products.aspx

Jibz:
How do we know is is not a report paid for? It wouldn't be the first time happening.
-rxantos (June 06, 2010, 07:09 PM)
--- End quote ---

Original Advisory
Adobe:
http://www.adobe.com/support/security/advisories/apsa10-01.html
--- End quote ---

While I love a good conspiracy theory as much as the next guy, why would Adobe pay to get a false vulnerability warning on their own product?

Personally I interpreted it more like they didn't want to disclose what the problem was to avoid helping more people exploit it, but I have no idea of course :).

40hz:
'Bout time to whip out the NoScript, have ya the browser for it.

Ehtyar.
-Ehtyar (June 05, 2010, 04:55 AM)
--- End quote ---

Aye! Thassa bes' way ta thwart yer wossname snitch.

NoScript. Learn it, load it, love it!  :Thmbsup:

Lashiec:
Flash 10.1 out, which is reportedly not affected by this vulnerability. The new version has an unusual number of changes (PDF) for a point release, and among those are a bunch of new features that supposedly will make Flash behave as it should, and make Steve Jobs reconsider including Flash in Apple's iDevices (yeah, sure).

Meanwhile, Adobe Reader is waiting for a patch, so keep those authplay.dll renamed :)

EDIT: Some Flash animations (for example, the one running in the main Flash Player webpage) when right-clicked won't let the user close its corresponding tab or interact with other GUI elements afterwards. I've only encountered this bug on Opera, but it may affect other browsers as well.

Navigation

[0] Message Index

[*] Previous page