Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Critical vulnerability found in Adobe Flash Player

27 Jul 2009   #1
Airbot

Windows 7 Ultimate x64 SP1
 
 
Critical vulnerability found in Adobe Flash Player

Quote:
Adobe has posted a security advisory for Adobe Reader, Acrobat and Flash Player. The company states that a critical vulnerability is present in the current versions of Flash Player (v9.0.159.0 and v10.0.22.87) for Windows, Macs and UNIX operating systems and the authplay.dll component that ships with Adobe Reader and Acrobat v9.x on the same operating systems.
more..


My System SpecsSystem Spec
.

28 Jul 2009   #2
ahmed tabit

w 7
 
 

many thanks mate for the great info
My System SpecsSystem Spec
28 Jul 2009   #3
AlexT2889

Windows 7™ Home Premium x64/Sony PS3 XrossMediaBar™ FW 3.30/Sony PSP XrossMediaBar™ FW 6.20
 
 

Adobe really needs to rewrite Flash and Shockwave from the ground-up now...

Especially Flash since you need a dual-core PC to actually view Flash videos without the annoying buffering in YouTube, especially on Windows XP.

On the otherhand, I can view Silverlight content perfectly smooth and clear on the same XP PC...
My System SpecsSystem Spec
.


28 Jul 2009   #4
swarfega

Windows 7 Professional 64-bit
 
 

Sites really need to start adopting silverlight.
My System SpecsSystem Spec
28 Jul 2009   #5
Wii Master 64

Windows 7 Home Premium
 
 

how do you make silverlight your default player thing? can you make it your default it firefox?
My System SpecsSystem Spec
28 Jul 2009   #6
darkassain

Windows 7 Ult x64(x2), HomePrem x32(x4), Server 08 (+VM), 08 R2 (VM) , SuSe 11.2 (VM), XP 32 (VM)
 
 

from what i know they are different formats and so they are not compatible...
as for me yes i hate the fact that the its forced me to run with High performance just to play youtube (with being able to play 720p and 1080p content through DXVA at power saver or balanced...) which i really hate...

and thanks for the update
thats why i love flashblock....
My System SpecsSystem Spec
30 Jul 2009   #7
Babel17

Windows 7
 
 

Adobe Product Security Incident Response Team (PSIRT)

Quote:
We evaluated the impact of the vulnerable versions of the Microsoft Active Template Library (ATL) / CVE-2009-0901, CVE-2009-2395, CVE-2009-2493 / Microsoft Security Advisory (973882) on the Adobe product portfolio. We determined that Flash Player and Shockwave Player are the two products that leverage vulnerable versions of ATL. A Security Advisory for Flash Player and a Security Bulletin for Shockwave Player have been posted to our security bulletins and advisories page.
PSIRT has determined that the Adobe Reader browser plug-in for Internet Explorer, Connect Pro, Flash Lite for mobile devices, LiveCycle SAP Forms and other products are NOT vulnerable to CVE-2009-0901, CVE-2009-2395, or CVE-2009-2493.
Note that only Internet Explorer plug-ins are vulnerable. Thus, people using Flash Player within the Firefox browser -- as well as all other Windows-based browsers (that aren't Internet Explorer) -- are not vulnerable. Additionally, Flash Player and Shockwave Player on Macintosh, Linux and Solaris operating systems are not vulnerable.
Per the Shockwave Player Security Bulletin, this vulnerability has been patched in the latest version of Shockwave Player, which is now available for download (Adobe - Adobe Shockwave Player). Per the Security Advisory for Flash Player, this vulnerability will be patched in the scheduled July 30, 2009 update of Flash Player.
Users should consider installing MS09-034. As a defense-in-depth measure, this Internet Explorer security update helps mitigate known attack vectors within Internet Explorer for those components and controls, such as Flash Player and Shockwave Player, that have been developed with vulnerable versions of ATL as described in Microsoft Security Advisory (973882) and Microsoft Security Bulletin MS09-035.
We will continue to provide updates on this issue via the Security Advisory section of the Adobe web site, as well as the Adobe PSIRT blog.
This posting is provided "AS IS" with no warranties and confers no rights.
Bold added by me.

This is reassuring. Lately I've taken to not installing any plug-ins into IE. I use it mainly to only check links for problems.
My System SpecsSystem Spec
30 Jul 2009   #8
sassofalco

Windows 7 Home Premium x64 - SP1
 
 

Quote   Quote: Originally Posted by darkassain View Post
and thanks for the update
thats why i love flashblock....
Agreed.......and "No Scripts", .....two x milli-second, stop and thinks!
My System SpecsSystem Spec
30 Jul 2009   #9
dmex

 

Quote   Quote: Originally Posted by Babel17 View Post
This is reassuring. Lately I've taken to not installing any plug-ins into IE. I use it mainly to only check links for problems.
That ATL bug affects millions of developed applications not just Flash, flashblock and NoScript will not save you from this one
My System SpecsSystem Spec
30 Jul 2009   #10
Babel17

Windows 7
 
 

My System SpecsSystem Spec
Reply

 Critical vulnerability found in Adobe Flash Player




Thread Tools





Similar help and support threads
Thread Forum
Adobe fixes 18 critical vulnerabilities in Flash Player
Source A Guy
Security News
Adobe fixes critical flaws in Flash Player, delays Reader and Acrobat
Adobe fixes critical flaws in Flash Player, delays Reader and Acrobat updates Source A Guy
Security News
Adobe patches a critical vulnerability in Shockwave Player
Source A Guy
Security News
Adobe warns of 'critical' Flash Player security holes 3/6/12
Source: Adobe warns of 'critical' Flash Player security holes | ZDNet
Security News
Critical Update: Adobe Flash Player
An Adobe Security Bulletin has been posted to address critical security issues in Adobe Flash Player, referenced in Security Advisory APSA10-01. This Security Bulletin affects Flash Player versions 10.0.45.2 and earlier, as well as AIR versions 1.5.3.9130 and earlier.Although Adobe...
News
New 0-day vulnerability in Adobe´s Flash Player, Reader & Acrobat
hi ! i got a flash-message from SITIC, (the Swedish IT-Incident Center), there is a new 0-day vulnerability in Adobe´s Flash Player, Reader & Acrobat ! info from Adobe: "Security Advisory for Flash Player, Adobe Reader and Acrobat Release date: June 4, 2010 ...
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 02:54.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App