Author Topic: "Adobe Flash attack vector exploits insecure web design"  (Read 1999 times)

0 Members and 1 Guest are viewing this topic.

Offline logos

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 9443
"Adobe Flash attack vector exploits insecure web design"
« on: November 16, 2009, 12:06:46 PM »
http://www.theregister.co.uk/2009/11/13/adobe_flash_wallop/

Quote
An unpatched security risk involving Adobe Flash creates a possible mechanism for hackers to load exploits onto websites.

The vulnerability was discovered by security researchers at Foreground Security and reported to both Adobe and Google, whose Google Applications, including Gmail, are potentially vulnerable to exploit.

No fix is currently available. However, exploitation of the security flaw would be far from straightforward, especially on Gmail because hackers would have to figure out message IDs in order to create any mischief. Foreground has not detected any attacks using the technique, which affects sites that allow users to upload active content onto trusted domains.
w7 - ais7

Offline YoKenny

  • Serious Graphoman
  • **
  • Posts: 8786
Re: "Adobe Flash attack vector exploits insecure web design"
« Reply #1 on: November 16, 2009, 12:26:02 PM »
Quote
Toggle Flash On or Off in Internet Explorer the Easy Way

If you often browse Flash-heavy websites using Internet Explorer and would like to be able to turn Flash off and only enable it when you really want to, there’s an easy way to accomplish this with a small application appropriately called Toggle Flash.

http://www.howtogeek.com/howto/windows-vista/toggle-flash-on-or-off-in-internet-explorer-the-easy-way
E5200 2.5GHZ, 4GB RAM, 320GB HD, Windows 7 Home Premium 64bit, avast! V9.0 Free, IE10
P4 2.8GHZ, 1.5GB RAM, 40GB HD, XP Pro SP3 32bit, avast! V9.0 Free, Google Chrome
with hpHosts, MVPS HOSTS files, SpeedFan, WinPatrol PLUS

Offline Rumpel

  • Avast Evangelist
  • Advanced Poster
  • ***
  • Posts: 953
  • The poster formerly known as - Rumpelstiltskin®
Re: "Adobe Flash attack vector exploits insecure web design"
« Reply #2 on: November 16, 2009, 01:14:37 PM »
Wow...how scary...   :o  Thank you for the news, Logos and YoKenny.  ;)  ;D