Corrupted Flash security code ?

Discussion in 'other security issues & news' started by StevieO, Apr 14, 2006.

Thread Status:
Not open for further replies.
  1. StevieO

    StevieO Registered Member

    Joined:
    Feb 2, 2006
    Posts:
    1,067
    I saw a post in a thread a few days ago regarding Flash exploits/vulnerabilities etc, but i can't remember where i saw it ! Anyway i found this which is relevent, and i would have posted in there if i could have found it. So here it is instead.


    Quote

    "Almost every browser has plug-ins to handle Adobe's Flash format, and the security researcher said he wonders about the code's security.

    "These are plug-ins that are installed by default, and no one has really taken a look at a corrupted Flash generator," he said.

    Soon, that may not be true."

    http://www.securityfocus.com/news/11387/2


    StevieO
     
  2. crackman

    crackman Registered Member

    Joined:
    Jul 6, 2005
    Posts:
    24
    Location:
    Southern California
    Flash IS corrupted

    StevieO:

    Macromedia's Flash has received some scrutiny lately. Secunia documents a problem, originally reported by Microsoft, at:

    http://secunia.com/advisories/19218/

    Unfortunately, Macromedia (now a part of Adobe) is far from having its act together on this one. Their response, in the recently-released Version 8.0.24.0, was to "hack" the Registry permissions for the Flash control, breaking Flash's operation for Limited Users. Isn't it ironic that security-conscious people get locked out of Flash when updating to a supposedly more secure version? One may follow this soap opera at:

    http://www.macromedia.com/cfusion/w...iew.cfm?catid=184&threadid=1130818&forumid=44

    CrackMan
    XP/IE6/SP2
     
Loading...
Thread Status:
Not open for further replies.