Saturday, January 05, 2008

Flash

Details of security holes in Flash applets
More detailed information is now available about security problems notified at the end of last year, caused by cross-site scripting vulnerabilities in Flash applets. Apparently, errors in common Flash authoring tools can be exploited in order to foist crafted JavaScript code on users and execute it in their browsers. By this means attackers can, for example, read cookies and passwords or carry out operations in the context of a site that has been called up, e.g. by putting entries in blogs or making comments.

Read the article HERE.

Problems updating the Flash player in Firefox?
The first time I ran the Secunia Software Inspector I almost fell off my chair at the huge list of old versions of the Flash player that were hanging around.

Read the article HERE.

0 Comments:

Post a Comment

<< Home