Comments on: Adobe Warns of Critical Flaw in Flash, Acrobat & Reader http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/ In-depth security news and investigation Wed, 23 May 2012 21:31:36 +0000 hourly 1 http://wordpress.org/?v=3.3.2 By: Fantasy Football Advice http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-12525 Fantasy Football Advice Tue, 16 Nov 2010 02:49:31 +0000 http://krebsonsecurity.com/?p=3432#comment-12525 Thanks for the Information about Adobe I'll be sure to go ahead and update it. Thanks for the Information about Adobe I’ll be sure to go ahead and update it.

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Chris http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-9142 Chris Thu, 02 Sep 2010 14:51:01 +0000 http://krebsonsecurity.com/?p=3432#comment-9142 Does anyone know what the coresponding registry keys would be for the multimedia(legacy) preferences? I was just reading today about a secuitygroup called Abysssec who are putting out what they are calling their "Month of Abysssec Undisclosed bugs" or MOAUB. The first exploit they released yesterday is a for adobe reader 9.3.2 or lower and once again the culprit is the authplay.dll responsible for processing flash contents in PDF files. You can find the information here: http://www.abysssec.com/blog/2010/09/moaub-1/ Does anyone know what the coresponding registry keys would be for the multimedia(legacy) preferences? I was just reading today about a secuitygroup called Abysssec who are putting out what they are calling their “Month of Abysssec Undisclosed bugs” or MOAUB. The first exploit they released yesterday is a for adobe reader 9.3.2 or lower and once again the culprit is the authplay.dll responsible for processing flash contents in PDF files. You can find the information here: http://www.abysssec.com/blog/2010/09/moaub-1/

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: ComplyAnt http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6697 ComplyAnt Fri, 11 Jun 2010 10:57:32 +0000 http://krebsonsecurity.com/?p=3432#comment-6697 Adobe have released a version of Flashplayer to address the fault. Details in their security bulletin here: http://www.adobe.com/support/security/bulletins/apsb10-14.html Or (if you can't be bothered to read it) to download latest version: http://get.adobe.com/flashplayer/ Adobe Reader and Air also have updates. Adobe have released a version of Flashplayer to address the fault. Details in their security bulletin here: http://www.adobe.com/support/security/bulletins/apsb10-14.html

Or (if you can’t be bothered to read it) to download latest version:
http://get.adobe.com/flashplayer/

Adobe Reader and Air also have updates.

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Peter http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6656 Peter Thu, 10 Jun 2010 14:06:28 +0000 http://krebsonsecurity.com/?p=3432#comment-6656 I have been reading that Adobe will release a Flash patch today (June 10). I am wondering if the fix is a rushed release of 10.1 which was at RC7 just 2 days ago or if it truly a patch? Does anyone have any insight? Does anyone have any information on the stability of the RC for Flash 10.1? I have been reading that Adobe will release a Flash patch today (June 10). I am wondering if the fix is a rushed release of 10.1 which was at RC7 just 2 days ago or if it truly a patch? Does anyone have any insight? Does anyone have any information on the stability of the RC for Flash 10.1?

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: jerry http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6619 jerry Wed, 09 Jun 2010 19:06:09 +0000 http://krebsonsecurity.com/?p=3432#comment-6619 From here: http://www.adobe.com/support/security/advisories/apsa10-01.html Adobe Reader 9.x - Macintosh 1) Go to the Applications->Adobe Reader 9 folder. 2) Right Click on Adobe Reader 3) Select Show Package Contents 4) Go to the Contents->Frameworks folder 5) Delete or move the AuthPlayLib.bundle file Acrobat Pro 9.x - Macintosh 1) Go to the Applications->Adobe Acrobat 9 Pro folder. 2) Right Click on Adobe Acrobat Pro 3) Select Show Package Contents 4) Go to the Contents->Frameworks folder 5) Delete or move the AuthPlayLib.bundle file Adobe Reader 9.x- UNIX 1) Go to installation location of Reader (typically a folder named Adobe) 2) Within it browse to Reader9/Reader/intellinux/lib/ (for Linux) or Reader9/Reader/intelsolaris/lib/ (for Solaris) 3) Remove the library named "libauthplay.so.0.0.0" From here: http://www.adobe.com/support/security/advisories/apsa10-01.html

Adobe Reader 9.x – Macintosh

1) Go to the Applications->Adobe Reader 9 folder.
2) Right Click on Adobe Reader
3) Select Show Package Contents
4) Go to the Contents->Frameworks folder
5) Delete or move the AuthPlayLib.bundle file

Acrobat Pro 9.x – Macintosh

1) Go to the Applications->Adobe Acrobat 9 Pro folder.
2) Right Click on Adobe Acrobat Pro
3) Select Show Package Contents
4) Go to the Contents->Frameworks folder
5) Delete or move the AuthPlayLib.bundle file

Adobe Reader 9.x- UNIX
1) Go to installation location of Reader (typically a folder named Adobe)
2) Within it browse to Reader9/Reader/intellinux/lib/ (for Linux) or Reader9/Reader/intelsolaris/lib/ (for Solaris)
3) Remove the library named “libauthplay.so.0.0.0″

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Moonlight Gambler http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6605 Moonlight Gambler Wed, 09 Jun 2010 12:08:49 +0000 http://krebsonsecurity.com/?p=3432#comment-6605 I don't know about Mr Jobs, but for me this is why I don't like Adobe products. Bring on HTML5 and a Flash free world. I don’t know about Mr Jobs, but for me this is why I don’t like Adobe products.

Bring on HTML5 and a Flash free world.

Like or Dislike: Thumb up 0 Thumb down 2
]]> By: Jonathan Dale http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6598 Jonathan Dale Tue, 08 Jun 2010 18:03:23 +0000 http://krebsonsecurity.com/?p=3432#comment-6598 When I first heard about this announcement, I thought about the IT staff and where their minds are. I remember working on the support desk year and years ago when a Cisco announcement came out and the fire drill it was to upgrade hardware. I wrote about it more today and the new technology that helps IT understand which devices are impacted in just seconds. http://links.maas360.com/adobeFlaw When I first heard about this announcement, I thought about the IT staff and where their minds are. I remember working on the support desk year and years ago when a Cisco announcement came out and the fire drill it was to upgrade hardware.

I wrote about it more today and the new technology that helps IT understand which devices are impacted in just seconds.
http://links.maas360.com/adobeFlaw

Like or Dislike: Thumb up 0 Thumb down 1
]]> By: QQ http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6594 QQ Tue, 08 Jun 2010 15:49:43 +0000 http://krebsonsecurity.com/?p=3432#comment-6594 One thing that works for the AV solutions is that most of the malware is recycled by encryption or byte adding etc.. And once they add heuristics for that infection the detection rate increase. AV software tend to give itself high privileges on the system ,it monitors OS files and 'sits' in places that will prevent malware from fully functioning. Without going into details, it is suffice to say it is much better to have AV installed and running with updates, It might not save you from 0day fresh malware but it might prevent parts of it from running and the infection will be less severe and on top it blocks considerable amount of the on-the-wild malware decent best rated AV will block on average around 80-90% of random malware. It is like a chain mail or bullet vest, not immune but much better survival rates. One thing that works for the AV solutions is that most of the malware is recycled by encryption or byte adding etc..

And once they add heuristics for that infection the detection rate increase.

AV software tend to give itself high privileges on the system ,it monitors OS files and ‘sits’ in places that will prevent malware from fully functioning.

Without going into details, it is suffice to say it is much better to have AV installed and running with updates, It might not save you from 0day fresh malware but it might prevent parts of it from running and the infection will be less severe and on top it blocks considerable amount of the on-the-wild malware decent best rated AV will block on average around 80-90% of random malware. It is like a chain mail or bullet vest, not immune but much better survival rates.

Like or Dislike: Thumb up 3 Thumb down 1
]]> By: Russ http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6587 Russ Mon, 07 Jun 2010 22:19:52 +0000 http://krebsonsecurity.com/?p=3432#comment-6587 If you can, it isn't a bad idea to get away from Adobe's software. Flash player is your only option for such, but for PDF there are some good choices out there. Most people recommend Foxit, but I'm a big fan of Sumatra PDF. Its refreshingly lightweight and responsive. Neither can match 100% features of Adobe's app but for many they should be more than sufficient.

If you can, it isn’t a bad idea to get away from Adobe’s software. Flash player is your only option for such, but for PDF there are some good choices out there. Most people recommend Foxit, but I’m a big fan of Sumatra PDF. Its refreshingly lightweight and responsive. Neither can match 100% features of Adobe’s app but for many they should be more than sufficient.

Well-loved. Like or Dislike: Thumb up 4 Thumb down 0
]]> By: TheGeezer http://krebsonsecurity.com/2010/06/adobe-warns-of-critical-flaw-in-flash-acrobat-reader/comment-page-1/#comment-6582 TheGeezer Mon, 07 Jun 2010 17:07:57 +0000 http://krebsonsecurity.com/?p=3432#comment-6582 Thanks for the June 7 update Brian. There is also a zdnet article from June 4 on the exploit. For anyone interested the latest zdnet article is at: http://www.zdnet.com/blog/security/adobe-warns-of-flash-pdf-zero-day-attacks/6606?tag=nl.e539 Thanks for the June 7 update Brian. There is also a zdnet article from June 4 on the exploit. For anyone interested the latest zdnet article is at: http://www.zdnet.com/blog/security/adobe-warns-of-flash-pdf-zero-day-attacks/6606?tag=nl.e539

Like or Dislike: Thumb up 0 Thumb down 0
]]>