Skip navigation
Currently Being Moderated

Not updating to 11.3 a security risk?

Jun 15, 2012 11:54 AM

http://forums.adobe.com/thread/1021119?tstart=0 b/c 11.3 is a quarterly update and is not being installed through the silent update mechanism in 11.2.  Are any of the exploits found in 11.2.205.235 and fixed in 11.3 being actively exploited in the wild?  This is important b/c I wanted 11.2 to update eventually update itself whenever that will be, but if there is security risk, I will manually install 11.3.  

 
Replies
  • Currently Being Moderated
    Jun 15, 2012 2:12 PM   in reply to Epaminodas123

    You can find a full description of the security enhancements and fixes in the release notes, here:

    http://helpx.adobe.com/flash-player/release-note/enduser-release-notes -11_3.html

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 15, 2012 5:30 PM   in reply to Epaminodas123

    anything adobe seams to do with flash/trash makes it more vulnerable, flash and java imho are the culprit for 99% of the viruses at my shop.

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 15, 2012 5:47 PM   in reply to adobeisavirus

    If you have viruses in your shop, then you have a serious security issue, and this is certainly not caused by Flash or Java!

     

    I have Flash and Java on all our computers, and we have never seen any malware on our networks.

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 15, 2012 6:42 PM   in reply to Pat Willener

    wow really? im talking about customers bringing in there pcs with viruses from flash exploits on porn sites or other facebook exploits.

     

    didnt think id need to give a line-itemized detail to how u get viruses.

     

    look at this link, educate yourself a bit, dont be scared, this is a flash program designed to deploy fake viurses..........

    http://www.flickr.com/photos/42750870@N05/4261577823/

    http://www.flickr.com/photos/adriarichards/3516673598/

    http://www.flickr.com/photos/42750870@N05/4284081791/

     

    its usually deployed through a fake flash update

    http://images.theage.com.au/2012/05/10/3284394/art-Flash-420x0.jpg

     

    or as i was saying use flash for the virus

    here is proof.

    http://news.cnet.com/2100-1023-803829.html

     

    while the cnet article is proof of concept...

    next time dont sound so stupid.

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 16, 2012 4:35 PM   in reply to adobeisavirus

    adobeisavirus wrote:

     

    ... while the cnet article is proof of concept...

     

    Based on a 10 years old article?

     

    Are you aware of how many Flash updates have been released on that period of time?

    How has Flash Technology been improved its security since then?

     

    Anyway... It seems you didn't read the article further after that sentence... and as if it was written today:

    ... "The virus is not the first to try to fool those PC users with a weakness for Flash movies"...

    ... "This is (was) just a new way to get into the PC" ,,, "It does show that the virus writters are always looking for new battlegrounds" ...

     

    Cheers

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 16, 2012 8:13 PM   in reply to RickCP

    lol you act as if everything else i said isnt valid. flash is still used as an enterance for viruses. like "popups" that are really javascript

     

    skriptkiddys are skriptkiddys weather its java, flash, C++ or machine code FFS.

     

    but if apple isnt using flash because of the incessant updating and glitching and bugs, then my point is still proven, in spades even.

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 17, 2012 1:29 AM   in reply to adobeisavirus

    Keep in mind that JavaScript and Java are two entirely different entities.

     
    |
    Mark as:
  • Currently Being Moderated
    Jun 18, 2012 9:02 AM   in reply to Epaminodas123

    We maintain a version of Flash Player 10 for Enterprise customers, who are generally more interested in security updates than new Flash Player features.

     

    If you need to roll back, and don't need the functionality provided by Flash Player 11, rolling back to the latest version of Flash Player 10 would be the best option.

     

    http://forums.adobe.com/message/3854689#3854689

     
    |
    Mark as:

More Like This

  • Retrieving data ...

Bookmarked By (0)

Answers + Points = Status

  • 10 points awarded for Correct Answers
  • 5 points awarded for Helpful Answers
  • 10,000+ points
  • 1,001-10,000 points
  • 501-1,000 points
  • 5-500 points