Adobe fixes multiple flaws in Flash Player

Written by James Delahunty @ 09 Apr 2008 11:35 User comments (4)

Adobe's Flash Player is used to display graphics content on millions of websites around the world, as well as being one of the (if not "the") most used technologies to drive the Internet video revolution. As a result, it has support in a large number of browsers installed on users' machines, and so it is an attractive target for those who seek to deliver malware to your computer.

A term has even been coined to address the occurence and growth of malware being delivered to a users' PC through a flash advertisement; Malvertisement. It was a flash vulnerability that won Shane Macaulay a laptop at the PWN TO OWN convention when he successfully broke into a machine running Windows Vista.

"These vulnerabilities could be accessed through content delivered from a remote location via the user's web browser, e-mail client, or other applications that include or reference the Flash Player," Adobe wrote in its advisory, in which it classifies its patches as "critical".

Back in January of this year, Adobe and a group of related companies fixed their software to block malicious individuals from creating .SWF files that enabled cross-site scripting attacks.

<Flickr to add video streaming >iPhone browser tops mobile browser usage in U.S.

4 user comments

110.4.2008 06:30

susieqbbb

Inactive

another vista flaw..

If you can break into a system by using a third party app your code is the most worthless piece of garbage ever.

210.4.2008 06:42

varnull

Inactive

Good.. Adobe make pretty junk applications.

In this day and age swf is like some monstrosity from the past.. Proprietary software cobbled together, full of bugs and exploits. It was useful back in the day, but now with faster internet and better pc's it's outmoded by modern methods.

Webmasters should reject this obsolete technology and move forward with properly streamed video instead of relying on this restricted junk.

310.4.2008 09:30

SProdigy

Send private message to this user

Senior Member

Adobe needs to get their head out of you know where. Try to install Flash Player on some PC's and it won't even authenticate the installation. Also, some pages that use FLV for their main video source (YouTube, Weather Channel) error with an "swf.cab" being blocked within Internet Explorer. (Yeah I use FireFox, but IE is used by IT here at work, so I have to live with it.)

Also Adobe Reader 8 doesn't open linked file names with spaces in them (all previous versions did) causing problems with in-house software and even website browsing at times.

Adobe Acrobat 7 and 8 have TRILLIONS of installation problems. Sometimes the only way to install it on a PC is to reinstall Windows from scratch!

Adobe NEEDS to clean up their act!

411.4.2008 12:13

nobrainer

Inactive

Is this the new DRM bug i wonder, the one that stops you making your own content.

http://arstechnica.com/news.ars/post/200...gered-list.html

Originally posted by read above link:
The draconian Digital Millennium Copyright Act (DMCA) broadly prohibits circumvention of copy-protection mechanisms, and thus criminalizes the exercise of fair use rights on DRM-encumbered content. The failure of the DMCA to provide adequate exceptions and safeguards for fair use, critics say, undermines the underlying principle of the copyright system, which is to promote creativity by establishing a fair balance between the rights of content producers and content consumers. All too often, lawmakers focus on protecting the content industry and forget that the permissive elements of copyright law—like fair use and the public domain—are just as essential to fulfilling the purpose of the system.

its the same old story, DRM used to keep the gatekeeper approach to media, so that only corporations can sell their wares and block users from uploading free content they have made them selves. I think adobe are taking a leaf out of the RIAA/IFPI/MPAA's book!

This message has been edited since its posting. Latest edit was made on 11 Apr 2008 @ 12:14

Comments have been disabled for this article.

	Netflix buys HBO and Warner Bros studios (05 Dec 2025 8:04) Netflix has won the bidding competition for media giant Warner Bros and will acquire HBO as well as the Warner Bros film studios.
	Massive Android 0-day vulnerability found - here's what you should do immediately (08 Nov 2025 5:35) A very serious security flaw has been found in the Android operating system, allowing malicious code to be executed on a phone or tablet.
	Review: Roborock Saros Z70 - robot vacuum with an arm (20 Oct 2025 6:13) In out in-depth review of Roborock Saros Z70 we put the robot vacuum through a 3 month test period, where we observed its work in normal home. The sci-fi -like arm of Z70 was a little bit disappointing, due its limited functionality.
	End of an era: TiVo stops making DVRs (14 Oct 2025 4:12) TiVo, once synonumous with digital TV recording in the United States and in select other countries, has stopped making DVR devices as of October, 2025.
	Strava takes Garmin to court (02 Oct 2025 2:30) The world's perhaps best-known sports app developer Strava has filed a lawsuit against American sports watch manufacturer Garmin, accusing the company of patent infringement. 1 user comment

	What IP rating for dust and water resistance means An IP classification (such as IP68) is given to mobile phones, Bluetooth speakers, and other devices, but what do these classifications mean? 1 user comment
	What happens if you don't update Android? Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
	Does your phone rattle? Here's why it happens When you shake your phone and hear a light rattle, clatter, or jingle, it's likely not broken. The culprit is probably the optical image stabilization (OIS) system in your phone's camera, meaning everything is functioning as it should. 2 user comments
	Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix Do you have problems with you Wi-Fi? Slow connection or is it cutting off constantly? This guide aims to remedy these problems. 1 user comment
	GUIDE: Wi-Fi speeds are slow? Here are some tips Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues. 1 user comment

Adobe fixes multiple flaws in Flash Player

4 user comments

Latest news

Reviews

Guides

News archive

Subscribe

Sections:

Follow us:

	Review: Roborock Saros Z70 - robot vacuum with an arm In out in-depth review of Roborock Saros Z70 we put the robot vacuum through a 3 month test period, where we observed its work in normal home. The sci-fi -like arm of Z70 was a little bit disappointing, due its limited functionality.
	Roborock Saros 10 review - Great, but not perfect We tested Roborock Saros 10 robot vacuum for more than two months in order to see whether it is really worth its hefty price tag. The mopping, self-emptying Saros 10 was mostly great, even perfect. But its object avoidance was bit disappointing. 1 user comment
	Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum We put the Roborock S8 MaxV Ultra through a very, very long review process. The $1800 mopping robot vacuum is almost perfect, but its obstacle avoidance was surprisingly bad, considering the price - and compared to its competitors.