Flash Security Vulnerability? Not with Firefox & NoScript

Posted At : August 17, 2009 11:55 AM | Posted By : Edward Beckett
Related Categories: ColdFusion,Programming,Business,Code,JavaScript,Security,SEO

Apparently there is a Flash Security Vulnerability deriving from the 'authplay.dll' in Adobe's Flash Player on Windows, Mac and Linux for both Adobe Reader and Acrobat v9.x. Basically, an unsuspecting victim may be lured to a site that contains malicious Flash code to either crash or compromise the integrity of the victims computer ... Hmmm.

A CERT spokesperson stated ...

The Adobe Flash browser plug-in is available for multiple Web browsers and operating systems, any of which could be affected ... An attacker could also create a PDF document that has an embedded SWF file to exploit the vulnerability. This vulnerability is being actively exploited.

According to Trusteer, Two weeks after the press release, approximately 80 percent of Trusteer's installed base of 2.5 million online banking users still haven't received the Flash update.

What To Do? Use Firefox with NoScript.

Here's just one more notch in the belt for Firefox, and a prime example of why using Giorgio Maone's NoScript plug-in for Firefox is a must have.

For more info on NoScript ... check out Maone's Rockin' Site, NoScript.net ...

If your still using I.E., That's a shame ...

That's it.

Comments (2) | Print | Send | del.icio.us | Digg It! | Linking Blogs | Stumble This! | Reddit | LinkedIn Share! | 873 Views

Comments (Comment Moderation is enabled. Your comment will not appear until approved.)
[Add Comment]
Captain Obvious's Gravatar That's like saying "I'll never get a computer virus because I don't have a computer". Well no duh. I'll never get crushed by a Russian tank in my living room either. But disabling Flash doesn't have anything to do with FireFox or the noscript plugin, because you can disable it in IE as well. FireFox has become the bloated, slow mess that IE became.

And if you want to keep yourself from getting in a car accident by removing your car's engine, feel free. For me, the Flash player is the least of my worries. I've never been attacked that way once, and I think the benefit outweighs the drawbacks.

I hope people enjoy developing in their fancy-dancy HTML while I'm stealing everyone's clients!

(By the way, I think it's ironic that the ad at the bottom of your page says "click here to download Internet Explorer 8 - how funny)

Thanks for listening to me rant
# Posted By Captain Obvious | 8/17/09 6:36 PM
Edward Beckett's Gravatar "Because you can disable it in IE as well ... "

(You meant scripts ... right?)

With IE... You can't pick and choose which sites you will allow to run scripts ...

I think I'd compare it more to getting your car ripped off because you left your keys in it ...

Ads ... aren't they brilliant? ... ;-) ...
# Posted By Edward Beckett | 8/17/09 6:58 PM
[Add Comment]
BlogCFC was created by Raymond Camden. This blog is running version 5.9. Contact Florida Search Engine Optimization L.L.C.
Search Engine Optimization Specialist || Web Designer || Web Developer || Edward J Beckett ||
Search Engine Optimization Company || SEO Services || Internet Marketing Company || Search Engine Optimization Expert || Florida Search Engine Optimization LLC
Florida Search Engine Optimization || Search Engine Optimization || SEO Services || Florida SEO Blog
Florida Search Engine Optimization
Search Engine Optimization
SEO Services
Florida SEO Blog
August-01-2010
1:51 AM EST