Adobe fixes critical Shockwave bugs with neanderthal patch
Manual uninstall required
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
The critical patches for Adobe Systems software keep coming. This time, they fix serious security bugs in the company's Shockwave Player.
Adobe on Wednesday pushed out updates for Shockwave 11.5.2.602 and earlier on Windows and Mac operating systems. The patches fix multiple integer overflow and buffer overflow flaws that can be exploited to execute malicious code on computers that use the software.
Adobe is strongly urging users to upgrade, but the pill they are recommending isn't the easiest to swallow. Unlike the vast majority of today's patches, the Shockwave fix requires users manually uninstall the out-of-date version, reboot their systems, and then install the latest version. For an application with more than 450 million installations, that's downright primitive.
More importantly, making it inconvenient for users to upgrade is a guarantee that a sizable portion of them will remain vulnerable. Adobe has recently unveiled an automatic updater for its Reader application. It's about time the software maker made seamless updating for Flash and Shockwave standard too.
The critical patch, assuming it's installed, will update Shockwave to version 11.5.6.606. Adobe thanked Alin Rad Pop of Secunia Research for reporting the bugs. ®
COMMENTS
Just uninstall it
What's shockwave used for these days anyway? Just uninstall the old version, and don't bother installing the new version!
Reboot?
So the previous version had its filthy mitts on core OS files? And with a track record like that they still expect me to install the next version?
Actually, I'm just trolling. I don't have Adobe crap on my system at all, so I couldn't care less what pain they inflict on the suckers who insist that they need schlock-flash-crobat or else "most of the web doesn't work". (Word to the wise: you don't.)
Better idea
Uninstall shockwave & flash from all websites.
Uninstall shockwave & flash from all computers.
Live in peace and harmony :)
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
