Florida Search Engine Optimization - SEO - SEM - Blog - Edward Beckett - Security http://www.edwardbeckett.com/Blog/index.cfm Search Engine Optimization - Florida SEO Specialist - SEM Expert - Consultant en-us Tue, 07 Sep 2010 02:16:48 -0400 Mon, 17 Aug 2009 11:55:00 -0400 BlogCFC http://blogs.law.harvard.edu/tech/rss edward@edwardbeckett.com edward@edwardbeckett.com Flash Security Vulnerability? Not with Firefox & NoScript http://www.edwardbeckett.com/Blog/index.cfm/2009/8/17/Flash-Security-Vulnerability-Not-with-Firefox--NoScript Apparently there is a <a href="http://www.adobe.com/support/security/bulletins/apsb09-10.html" target="_blank">Flash Security Vulnerability</a> deriving from the 'authplay.dll' in Adobe's Flash Player on Windows, Mac and Linux for both Adobe Reader and Acrobat v9.x. Basically, an unsuspecting victim may be lured to a site that contains malicious Flash code to either crash or compromise the integrity of the victims computer ... Hmmm. A <a href="http://www.kb.cert.org/vuls/" target="_blank">CERT</a> spokesperson stated ... <blockquote>The Adobe Flash browser plug-in is available for multiple Web browsers and operating systems, any of which could be affected ... An attacker could also create a PDF document that has an embedded SWF file to exploit the vulnerability. This vulnerability is being actively exploited.</blockquote> According to <a href="http://www.trusteer.com/" target="_blank">Trusteer</a>, Two weeks after the press release, approximately 80 percent of Trusteer's installed base of 2.5 million online banking users still haven't received the Flash update. <h2>What To Do? Use Firefox with NoScript.</h2> Here's just one more notch in the belt for <a href="http://www.mozilla.com/en-US/firefox/upgrade.html" target="_blank">Firefox</a>, and a prime example of why using <a href="https://addons.mozilla.org/en-US/firefox/addon/722" target="_blank"> Giorgio Maone's NoScript plug-in for Firefox</a> is a must have. For more info on NoScript ... check out Maone's Rockin' Site, <a href="http://noscript.net/" target="_blank">NoScript.net</a> ... If your still using I.E., That's a shame ... That's it. ColdFusion Programming Business Code JavaScript Security SEO Mon, 17 Aug 2009 11:55:00 -0400 http://www.edwardbeckett.com/Blog/index.cfm/2009/8/17/Flash-Security-Vulnerability-Not-with-Firefox--NoScript