Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×
Security Bug

Shockwave Vulnerabilities Affect More Than 450 Million Systems 130

Posted by timothy from the drug-resistant-infections dept.
Trinity writes "Researchers from VUPEN have discovered critical vulnerabilities in Adobe Shockwave, a technology installed on over 450 million Internet-enabled desktops. The vulnerabilities could allow remote code execution by tricking a user into visiting a web page using Internet Explorer or even Mozilla Firefox. Version 11.5.1.601 as well as earlier ones are affected. The vendor recommends upgrading to version 11.5.1.602." Especially sobering when you consider Adobe's current push to be essentially required as an intermediary player for anyone who wants to see certain government data.
This discussion has been archived. No new comments can be posted.

Shockwave Vulnerabilities Affect More Than 450 Million Systems More

Shockwave Vulnerabilities Affect More Than 450 Million Systems

Comments Filter:

  • Hard to care anymore (Score:5, Interesting)

    by belthize ( 990217 ) on Thursday November 05, 2009 @03:28PM (#29998320)

    I find it harder and harder to really give a shit anymore. All of our systems (linux, Windows ,OSX) all have various automatic patching schemes. Once the vendor gets around to fixing their crap (Adobe in this case) we'll ingest the patch and move on.

    Once upon a time I monitored the various security announcement lists but ultimately it didn't matter. Most of this crap has become mission critical so turning it off isn't an option, fixing it yourself is rarely and option so you're left with wait and patch solution.

    I guess it's kind of free'ing. I no longer stress about it and focus on more relevant issues.

  • Re:Flashblock (Score:5, Interesting)

    by mcgrew ( 92797 ) * on Thursday November 05, 2009 @04:05PM (#29998806) Homepage Journal

    I'm surprised that anybody's surprised that a new Adobe exploit has surfaced, They seem to have surpassed Microsoft in their zeal to get your PC infected; Microsoft seems to hava actually been getting better in the last couple of years. Or Microsoft seems to at least be trying. Adobe doesn't seem to care.

  • Are their FOSS alternatives to Flash and Shockwave (Score:2, Interesting)

    by AP31R0N ( 723649 ) on Thursday November 05, 2009 @04:20PM (#29999044)

    1) Are there FOSS alternatives to Flash and/or Shockwave?

    2) Why(not)?

    3) If there was, would it help reduce problems like this?

    Please don't mod me as trolling for asking questions!

  • Re:Are their FOSS alternatives to Flash and Shockw (Score:3, Interesting)

    by TheDarkener ( 198348 ) on Thursday November 05, 2009 @05:28PM (#30000022) Homepage

    2. See above. Nobody cares about Shockwave, though.

    Nay, say I and the (many) school districts who visit shockwave-only educational sites. Not having Shockwave Director available on Linux has cost me clients. Talk about a slap in the face for trying to give schools a break by using good software, because they are too attached to bad software..

  • Anyone else have a problem after updating? (Score:1, Interesting)

    by Anonymous Coward on Thursday November 05, 2009 @05:29PM (#30000040)

    Rolled this out to a small lab (you know how students are, and where they can go, better safe than...).

    After installation, *all* users are asked to individually install another component when the Shock embed in the open page attempts to play (which as non-admins, they can't do). Since several of our teaching programs Shockwave this presents a real PITA.

    Previously there was no such behavior. Any ideas?

Slashdot Top Deals

Thus spake the master programmer: "After three days without programming, life becomes meaningless." -- Geoffrey James, "The Tao of Programming"

Close