1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Flash Vulnerabilities Affect Thousands of Sites

Discussion in 'News' started by malware, Dec 23, 2007.

  1. malware New Member

    Joined:
    Nov 7, 2004
    Messages:
    5,476 (1.44/day)
    Thanks Received:
    956
    Location:
    Bulgaria
    Researchers from Google have documented serious vulnerabilities in Adobe Flash content which leave tens of thousands of websites susceptible to attacks that steal the personal details of visitors. The security bugs reside in Flash applets, the ubiquitous building blocks for movies and graphics that animate sites across the web. Also known as SWF files, they are vulnerable to attacks in which malicious strings are injected into the legitimate code through a technique known as cross-site scripting, or XSS. Currently there are no patches for the vulnerabilities, which are found in sites operated by financial institutions, government agencies and other organizations. "Lots of people are vulnerable, and right now there are no protections available other than to remove those SWFs and wait for the authoring tools and/or Flash player to be updated," says Alex Stamos, an author of the Hacking Exposed Web 2.0 book. "In the mean time, people will have to think: 'What kind of flash am I using on my site,' and manually test for vulnerabilities."

    Source: The Register
     
  2. btarunr

    btarunr Editor & Senior Moderator Staff Member

    Joined:
    Oct 9, 2007
    Messages:
    29,461 (10.80/day)
    Thanks Received:
    14,010
    Location:
    Hyderabad, India
    I feel Silverlight isn't getting the attention it deserves as an alternative with better capabilities. There should always be two competing forces in an industry. It would foster innovation....which inturn would make sure software with lesser vulnerabilities come out and companies would give it their everything to making the software.
     
  3. Firedomain

    Firedomain New Member

    Joined:
    Oct 19, 2006
    Messages:
    361 (0.12/day)
    Thanks Received:
    14
    Location:
    Adelaide, SA, Aussie!
    im not 2 sure whether this is very much of a consumer concern......

    but if it is, i'd recommend Flashblock for Firefox Users.

    Works a treat.
     
  4. peach1971

    peach1971 New Member

    Joined:
    Oct 1, 2006
    Messages:
    652 (0.21/day)
    Thanks Received:
    46
    Location:
    Germany
  5. [I.R.A]_FBi

    [I.R.A]_FBi New Member

    Joined:
    May 19, 2007
    Messages:
    7,664 (2.67/day)
    Thanks Received:
    540
    Location:
    c:\programs\kitteh.exe
    one standard is enough thank you.
     
  6. 1c3d0g

    1c3d0g

    Joined:
    Dec 9, 2007
    Messages:
    707 (0.27/day)
    Thanks Received:
    62
    Any competent web developer shouldn't have to code in flash to pepper their website with crap. (X)HTML/CSS and/or JavaScript with png's/gif's are more than enough.
     

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Share This Page