Adobe Flash exploit raises concern

Discussion in 'other security issues & news' started by Thankful, May 27, 2008.

Thread Status:
Not open for further replies.
  1. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,744
    Location:
    New York City
  2. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,803
    Location:
    Texas
    Secunia
     
  3. Diver

    Diver Registered Member

    Joined:
    Feb 6, 2005
    Posts:
    1,444
    Location:
    Deep Underwater
    This is a real PITA as it is difficult to use the web with flash disabled. Probably, Firefox with NoScript is the best defense here.

    Its a real shame that the makers of add ons can't seem to get their act together. Look at how many problems there have been with Quicktime and Real Audio as well.
     
  4. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    How about if you use a flash placemarker so that you can select when to use flash? This is obviously a multimedia story that I would give the flash the OK here:

    flash_carroll.gif
    _________________________________________________

    Most browsers have some similar feature.

    Also, knowing the website. Note that in this current flash exploit, that the user is redirected:

    Attack code targets new Adobe Flash vuln
    http://www.theregister.co.uk/2008/05/27/new_adobe_flash_vuln/
    So, if you encountered one of these pages which redirected you to a malicious site, your placeholder would display rather than the flash applet running automatically, and you would certainly choose not to run the flash.

    If you look at the analyses for current attacks using these vulnerabilities, you will see that they attempt to download malware, which your basic security certainly would alert to. In this Flash exploit, for example:

    Malicious swf files?
    http://isc.sans.org/diary.html?storyid=4468
    There is really no reason to be a victim of these types of exploits.


    ----
    rich
     
  5. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
  6. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    Yes - sans.org raised this possibility yesterday in the diary entry I linked above:

    However, the security concerns/solutions remain the same for all of these types of exploits.


    ----
    rich
     
  7. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,803
    Location:
    Texas
    Exploitation of Adobe Flash Vulnerability
    Cert
     
  8. Diver

    Diver Registered Member

    Joined:
    Feb 6, 2005
    Posts:
    1,444
    Location:
    Deep Underwater
    It was a bit of a false alarm. Symantec thought the exploit applied to the latest 124 version, but it was 115 and earlier builds that were vulnerable.
     
  9. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,803
    Location:
    Texas
    Story
     
  10. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    I found an interesting blog entry that shows how many people actually bother to update Flash in a timely manner.

     
  11. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,803
    Location:
    Texas
    Microsoft Clarifies XP SP 3 Flash Issue
    Story
     
Loading...
Thread Status:
Not open for further replies.