Adobe fixes critical Shockwave bugs with neanderthal patch
Manual uninstall required
The critical patches for Adobe Systems software keep coming. This time, they fix serious security bugs in the company's Shockwave Player.
Adobe on Wednesday pushed out updates for Shockwave 22.214.171.1242 and earlier on Windows and Mac operating systems. The patches fix multiple integer overflow and buffer overflow flaws that can be exploited to execute malicious code on computers that use the software.
Adobe is strongly urging users to upgrade, but the pill they are recommending isn't the easiest to swallow. Unlike the vast majority of today's patches, the Shockwave fix requires users manually uninstall the out-of-date version, reboot their systems, and then install the latest version. For an application with more than 450 million installations, that's downright primitive.
More importantly, making it inconvenient for users to upgrade is a guarantee that a sizable portion of them will remain vulnerable. Adobe has recently unveiled an automatic updater for its Reader application. It's about time the software maker made seamless updating for Flash and Shockwave standard too.
The critical patch, assuming it's installed, will update Shockwave to version 126.96.36.1996. Adobe thanked Alin Rad Pop of Secunia Research for reporting the bugs. ®
Just uninstall it
What's shockwave used for these days anyway? Just uninstall the old version, and don't bother installing the new version!
So the previous version had its filthy mitts on core OS files? And with a track record like that they still expect me to install the next version?
Actually, I'm just trolling. I don't have Adobe crap on my system at all, so I couldn't care less what pain they inflict on the suckers who insist that they need schlock-flash-crobat or else "most of the web doesn't work". (Word to the wise: you don't.)
Uninstall shockwave & flash from all websites.
Uninstall shockwave & flash from all computers.
Live in peace and harmony :)