1. Adobe Security Alert Adobe issued a security advisory for their Flash Player,...

Critical vulnerabilities have been identified in Adobe Flash Player version 10.0.45.2 and earlier. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.Adobe . . . → Read More: Adobe Fixes Critical Security Holes Related posts:

1. Adobe Security Alert Adobe issued a security advisory for their Flash Player,...
2. Microsoft and Apple Release Major Security Updates Microsoft released their monthly patch bundle today. Make sure...

1. Adobe Security Alert Adobe issued a security advisory for their Flash Player,...
2. New Microsoft Ad The new Microsoft ad is a good demonstration of...

The message is that the same types of scams happen online and IE8 can protect you from bad guys while you browse. The fake bank experiment highlights just how gullible we can be when the promise of money is dangled in our face, . . . → Read More: New Microsoft Ad No related posts. Related posts brought to you by Yet Another Related Posts Plugin.]]>

The new Microsoft ad is a good demonstration of social engineering.

No related posts.

Related posts brought to you by Yet Another Related Posts Plugin.

A critical vulnerability exists in Adobe Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems, and the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for . . . → Read More: Adobe Security Alert No related posts. Related posts brought to you by Yet Another Related Posts Plugin.]]>

Adobe issued a security advisory for their Flash Player, Acrobat Reader, and Acrobat.  The vulnerability is currently being exploited on the Internet. From the advisory:

A critical vulnerability exists in Adobe Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems, and the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for Windows, Macintosh and UNIX operating systems. This vulnerability (CVE-2010-1297) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player, and Adobe Reader and Acrobat.

You can check your version of Flash Player here.

While Adobe doesn’t have a patch yet, they do have a release candidate version (all the bugs haven’t necessarily been worked out) of the Flash Player available that is not vulnerable to the exploit.

And if you use the Firefox browser, you should install the FlashBlock add-on.

If you’re using Adobe Reader 9.x, you can either delete the file authplay.dll file or use an alternative PDF file viewer like Foxit Reader.

Instructions for deleting the authplay.dll, as provided by Adobe:

Deleting, renaming, or removing access to the authplay.dll file that ships with Adobe Reader 9.x and Acrobat 9.x mitigates the threat for those products, but users will experience a non-exploitable crash or error message when opening a PDF file that contains SWF content.

The authplay.dll that ships with Adobe Reader 9.x and Acrobat 9.x for Windows is typically located at C:\Program Files\Adobe\Reader 9.0\Reader\authplay.dll for Adobe Reader or C:\Program Files\Adobe\Acrobat 9.0\Acrobat\authplay.dll for Acrobat.

No related posts.

Related posts brought to you by Yet Another Related Posts Plugin.