toggle

AAPL Stock: 105.22 ( + 0.39 )

Printed from http://www.macnn.com

Adobe closes critical Flash exploit

updated 11:05 am EDT, Thu April 10, 2008

Adobe fixes Flash exploit

Adobe has released an update for its ubiquitous Flash Player, addressing a critical security vulnerability. The v9.0.124.0 patch specifically targets an exploit related to Shockwave (SWF) files; in order to be affected, a user must load a malicious SWF file within Flash Player, which in turn gives hackers the ability to run authorized code on a computer. The vulnerability exists in Flash Player versions 9.0.115.0 and 8.0.39.0, and all prior incarnations. The update is available for all operating systems supported by Flash and browsers including Firefox, Opera and more.

Contained in the fix is a new feature, called cross-domain policy check. The Flash Player uses policy files to grab content from other domains, but although this enables advanced functions, it is possible for hackers to create their own policy files. If these files receive acceptance from the appropriate server, SWF files can then be used to load content from outside an official server's domain.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Sound Blaster Roar Bluetooth speaker

There could very well be a new king of the hill for Bluetooth speakers, with Sound Blaster's recent entry into the marketplace. Bring ...

Kenu Airframe Plus

Simple, stylish and effective, the Kenu Airframe + portable car mount is the latest addition to Kenu's lineup. Released earlier this ...

Plantronics Rig Surround 7.1 headset

Trying to capture the true soundscape of video games can be a daunting task. Looking to surround-sound home theater options, users hav ...

toggle

Most Commented