backtop


Print 66 comment(s) - last by QueBert.. on Jun 9 at 5:10 AM

Exploit attacks Flash Player 9 and 10 as well as Reader/Acrobat 9.x

Steve Jobs has been on a crusade against Adobe Flash for quite sometime citing issues with performance, stability, and security. Today, Adobe is fueling Jobs' concerns and likely giving the Apple CEO fodder for his WWDC keynote which is coming up on Monday.

According to Adobe, there is a critical vulnerability in versions of Flash Player (Windows, OS X, Linux, Solaris) and Reader/Acrobat 9.x (Windows, OS X, UNIX). The exploit allow a hacker to gain control over an affected system.

Even more troubling is that Adobe says that it currently doesn't have a fix and "there are reports that this vulnerability is being actively exploited in the wild."

Adobe says that the following versions of its products are affected:

  • Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions
  • Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions

It should be noted however, that the current Release Candidate version of Flash Player 10.1 "does not appear to be vulnerable" to this exploit and Adobe Reader/Acrobat 8.x are also safe.

You can view Adobe's full advisory on the exploit here which also details steps to minimize the impact of the exploit with Reader/Acrobat 9.x.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

By talozin on 6/6/2010 10:18:25 AM , Rating: 3
Secondly, he has a financial stake in HTML5 taking off over Flash. He owns stock in the company that owns the patent for the codec.

Hmm; according to Wikipedia (always a source of reliable knowledge :p), "[t]he current HTML5 draft specification does not specify which video formats browsers should support in the video tag. User agents are free to support any video formats they feel are appropriate." Has that changed since the last time someone updated the page?

My feelings on the whole Jobs vs. Adobe thing are kind of mixed. Flash is a buggy, insecure, slow power hog. It would be nice if it would go away and be replaced by an open (actually open, meaning it's at least possible to deploy in a non-patent-encumbered manner) standard. If Steve Jobs wants to accomplish that, great. If he wants to replace it with a closed standard, well, I don't see much reason to prefer Apple over Adobe. Show me a better, more secure, more efficient way to view video over the web and I might disagree.

Finally, I don't get the notion that Jobs wants to control "ALL content on his devices". I've never bought a movie from the iTunes store, but I have literally hundreds of hours of video that play just as well on my Apple devices as on my Windows devices and on my Linux devices. I've never bought an Apple-branded compiler, but I can compile software from source on my OS X hosts and run it just as easily as I can on Windows (probably easier, but not as easy as Linux). If Jobs really wants total control over his platform, he's doing a heckuva job at it, in the Mike Brown sense.


By afkrotch on 6/7/2010 10:17:37 PM , Rating: 2
Video hasn't changed on HTML5. I doubt they are going to set a specific format. Apple and MS are pushing h.264. Mozilla and Opera, I think, are pushing ogg.


"We don't know how to make a $500 computer that's not a piece of junk." -- Apple CEO Steve Jobs

Related Articles













botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki