ie8 fix
madison

Hardware 2.0

Adrian Kingsley-Hughes
Home / News & Blogs / Hardware 2.0

Almost 45% of YOU are vulnerable to Flash exploits!

By | March 17, 2011, 9:42am PDT

Summary: Back in November of last year I looked at the data for this blog and was shocked - SHOCKED! - to find that some 35% of you were vulnerable to remote-code execution exploits because you were running an out-of-date Flash player. I said I was going to keep and eye on things … well, that time has come, and, well, things are worse! Much worse!

Back in November of last year I looked at the data for this blog and was shocked - SHOCKED! - to find that some 35% of you were vulnerable to remote-code execution exploits because you were running an out-of-date Flash player. I said I was going to keep and eye on things … well, that time has come, and, well, things are worse! Much worse!

According to the data I have here, over the past week almost 45% of visits to this blog have been from systems that are running outdated versions of Flash. That’s bad. Really bad!

Here’s the data:

Everything NOT in the blue or orange segments represents an old, outdated version of Flash, and required urgent upgrading.

Check your Flash player NOW! Information on the current version of Flash player can be found here.

Alternatively, download and install use Secunia PSI which can be used to scan for outdated Flash plugins, Java, a multitude of applications and much more.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Hardware 2.0”

Topics

Blog, Adrian Kingsley-Hughes, Exploit, Blogging, Internet

Adrian Kingsley-Hughes is an internationally published technology author who has devoted over a decade to helping users get the most from technology.

Disclosure

Adrian Kingsley-Hughes

All opinions expressed on Hardware 2.0 are those of Adrian Kingsley-Hughes. Every effort is made to ensure that the information posted is accurate. If you have any comments, queries or corrections, please contact Adrian via the email link here. Any possible conflicts of interest will be posted below. [Updated: February 23, 2010] - Adrian Kingsley-Hughes has no business relationships, affiliations, investments, or other actual/potential conflicts of interest relating to the content posted so far on this blog.

Biography

Adrian Kingsley-Hughes

Adrian Kingsley-Hughes is an internationally published technology author who has devoted over a decade to helping users get the most from technology -- whether that be by learning to program, building a PC from a pile of parts, or helping them get the most from their new MP3 player or digital camera.

Adrian has authored/co-authored technical books on a variety of topics, ranging from programming to building and maintaining PCs. His most recent books include "Build the Ultimate Custom PC", "Beginning Programming" and "The PC Doctor's Fix It Yourself Guide". He has also written training manuals that have been used by a number of Fortune 500 companies.

Adrian also runs a popular blog under the name The PC Doctor, where he covers a range of computer-related topics -- from security to repairing and upgrading.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
60
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Almost 45% of YOU are vulnerable to Flash exploits!
jeffpk 24th Mar 2011
How many of us are running non-targeted systems though, like OSX and Linux?
View in thread
0 Votes
+ -
FlashBlock
luke_sg 17th Mar 2011
I've been using the FlashBlock plugin for several years. I started using it because I found Flash pages annoying. Now it serves a second purpose: security.
0 Votes
+ -
Agreed, Flash is extremely annoying...
i8thecat 17th Mar 2011
@luke_sg

But you still might want to run that Secunia PSI... Old plug in are left on your PC and still serve as a security risk, secunia will help you find them and get rid of them. Adobe sucks the big one.
0 Votes
+ -
Nice try. Ubuntu Linux with AppArmor profiled FF
Dietrich T. Schmitz, ~ Your Linux Advocate 17th Mar 2011
puts the keibosh on *any* exploit.

Ubuntu Linux: with LSM technology is the safest operating system on the planet.

I stake my reputation on it.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Loverock Davidson 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate
So you have to take extra steps to make linux secure? That sucks.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
tom@... 18th Mar 2011
@Loverock Davidson
No, it doesn't; you have to take extra steps to make ANY system reasonably secure.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
browser. 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate you do not have any reputation
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
CobraA1 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Drunk

It should be noted that yes, hackers have gotten around sandboxes before. Java itself is a language running on a VM which effectively sandboxes Java applications, yet it has had exploits.

It's a step forward, but not a complete solution. And yes, there are sandboxes available for Windows as well.

This security stuff is pretty amusing, considering I haven't been a victim of a virus in years on my Windows system. It actually doesn't take much effort to secure a Windows system anymore.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Software Architect 1982 Updated - 18th Mar 2011
@CobraA1 I agree.

I've been using computers since 1982 and to the best of my knowledge, I've never had a virus on any of my personal computers (fingers crossed). I'm a systems level developer, so I know what to look for and what to avoid and practice safe computing. All it takes is a lot of common sense and smart practices. Obviously, it also takes a small effort to keep up on the latest threats and to temporarily stop using software where an exploit has been found and not yet fixed OR avoid using the functions in that software that could open the exploit, until it's fixed.

And of course, staying away from obvious sites like warez and porn sites. FlashBlock on FF and adblock, also on FF are very powerful and very easy to install... consider them "web condoms"
0 Votes
+ -
Since your "reputation" is based on lies
Will Farrell 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate

I wouldn't really want to be bragging to much about it.

(Maybe the chicks dig it, but they learn the truth eventually)
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
bobiroc 17th Mar 2011
@Will Farrell

By chicks do you mean Rosie Palm and her best friend Jill?

I only say this because after reading many things posted by Dietrich I think he really does not get out that much. I cannot imagine anyone being as naive as him that actually experienced the real world.
0 Votes
+ -
Don't fanatics drive you nutz:)
James Quinn 17th Mar 2011
@Will Farrell
Just saying.....

Pagan jim
0 Votes
+ -
I agree!
Linux Geek 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate
45% is about the number of people using windoze and OSX.
The rest of us (55%) use Linux and we are safe from flash exploits.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
bobiroc 17th Mar 2011
@Linux Geek

55%??? What are you smoking?
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Pete "athynz" Athens 17th Mar 2011
@Linux Geek NO ONE uses an OS called "windoze"... sounds like a sleep aid or a pathetic ABM elementary schoolyard insult.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
tom@... 18th Mar 2011
@Linux Geek ... Uhh, you need to recheck your research number; you're way off. Try a more unbiased source next time.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Gis Bun 21st Mar 2011
@Linux Geek : Stop smoking the pot. Linux OS marketshare is just over 1%. It also means that About 95% of the OS market share uses Flash. The rest are in the stone age.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
bobiroc 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate

First of all the only reputation you have is based on lies and hatred for anything but Ubuntu it seems. Second any Operating system is only as safe as the person using it. Can Ubuntu Linux with LSM save the user from opening that email and clicking on the fake link they think is from their bank and entering their account info? Can it save them from randomly liking some exploit on Facebook that has nothing to do with the OS you use? I could go on but I think you get the point. No OS or software can save from any exploit. They can take preventative steps but ultimately safe computing begins and ends with the person using it.
0 Votes
+ -
Safe again!
Dietrich T. Schmitz, ~ Your Linux Advocate 17th Mar 2011
@bobiroc
You can even sandbox your email client app.
I do have Evolution running in a AA sandbox.

Go figure Bobiroc.
Crazy.

Ok try again.
0 Votes
+ -
Yes, try again.
ye 17th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate: You can even sandbox your email client app.

Go back and re-read the question. Pay particular attention to the following part:

"...clicking on the fake link they think is from their bank and entering their account info?"
0 Votes
+ -
Shifting subjects is considered 'off-topic'. Phishing is a separate matter
Dietrich T. Schmitz, ~ Your Linux Advocate 18th Mar 2011
@ye
nt
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
daikon 17th Mar 2011
@ye
What do you think you will gain if Dietrich was to give a response? Dietrich is commented to what he believes, good for him.
0 Votes
+ -
Daikon is my friend.
Dietrich T. Schmitz, ~ Your Linux Advocate 18th Mar 2011
@daikon
Stop by my site and say hello.
0 Votes
+ -
I think maybe he'll learn something.
ye Updated - 18th Mar 2011
@daikon: What do you think you will gain if Dietrich was to give a response? Dietrich is commented to what he believes, good for him.

That being to argue the point made instead of the point he thinks they made. Though given my past discussions with him I'm not holding out hope.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Return_of_the_jedi 18th Mar 2011
@ye

You are always looking for an argument. Good luck finding one today.
0 Votes
+ -
Bingo! We have a winner!
Dietrich T. Schmitz, ~ Your Linux Advocate 18th Mar 2011
@Return_of_the_jedi
No fish for ye today.
0 Votes
+ -
Re: Phishing is a separate matter
bobiroc 21st Mar 2011
@Dietrich T. Schmitz

Well you staked your reputation on that Linux will put the "kebosh on ANY exploit" now didn't you? Now you are changing your tune?

Maybe you spend too much time playing in a sandbox instead of living in the real world.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Cathhsmom 18th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate I agree with you, Ubuntu Linux is safe. Ubuntu is great!
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
tom@... 18th Mar 2011
@Dietrich T. Schmitz, Your Linux Advocate
Another reputation shot to hell . While I doubt Ubuntu can ever grasp a large share of the market, if it did there would be an awful lot of scrambling and bummed Ubuntu systems. Because YOU know how to avoid trouble means next to nothing about the other users, most of which have trouble adding the simplest feature.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Cylon Centurion 17th Mar 2011
I update right away everytime that popup shows at startup. But I rarely encounter any flash elements on the web anymore, as 99% of the time I am blocking ads, and hiding flash elements with the new IE blocking feature.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
kenosha77a 17th Mar 2011
@Cylon Centurion 0005

Didn't you rail against Apple and Steve Jobs for Apple's lack of Flash support in the iPad last year?

As you can see even by your own experiences, Flash is quickly becoming irrelevant for mainstream internet browsing.

For the one percent of the time that Flash is necessary, having an up-to-date plug in helps.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Peter Perry 17th Mar 2011
@kenosha7777 Yeah, that is a pipe dream so quit hitting the pipe.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Cylon Centurion 17th Mar 2011
@kenosha7777

I still need to use flash elements on the web, so yes. Video for example on may sites, is still flash based. But unless I give my browser permission to view them, they are automatically blocked from displaying.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
LiquidLearner 17th Mar 2011
@kenosha7777

I think this is a really good post. Obviously 99% isn't the amount of time Flash is actually being blocked or he really wouldn't need it. Unless, of course, you spend WAY too much time on the web.

I don't think Flash is useless. It's awesome for much of what my daughter plays. Some great learning games are written in Flash and those games work on my Droid as well. They don't on the iPhone, although there are surely alternatives.

My personal issue with the whole Flash on iPhone thing is I simply have a problem with Apple not allowing a company to publish software for their platform. Ultimately it should be up to the user. How useful it is to one person or another is another matter altogether, but if you need Flash you should be able to install it. The fact that Apple has the power to just block an application on the scale of Flash shows that Apple has some serious power over your device. I fear they're heading in the same direction with Lion and subsequent versions. I imagine OS X+1 will be a very closed ecosystem if Apple continues on its current course.
0 Votes
+ -
Yeah Cylon... What he said!!! (kenosha7777)
James Quinn 17th Mar 2011
@Cylon Centurion 0005

Pagan jim
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
kenosha77a 17th Mar 2011
@LiquidLearner and @Cylon Centurion 0005

I truly appreciate both your comments. For the record, as an end user, I have no particular aversion towards Flash based content. "Viewing video content is, after all, just viewing video content" (A nice tautology if ever there was one.)

However, the arguments stated so often against a version being employed on mobile devices are ones that I agree with. (And we all know those negative talking points by now)

But with the release of the Adobe Air "Wallaby" application recently, program coders will have a tool for Flash to HTML5 code conversion which should lessen the need for new "pure Flash" based content creation. As a result, Flash based content becomes less and less a future programing option. Or, put more bluntly, it becomes an obsolete technology.

Now, what to do about legacy Flash based content that needs to be viewed on mobile devices. Well, there are solutions available for those rare occurrences.

Actually, on my iPad, I resort to viewing Flash based content using the Skyfire app.

And, Apple didn't make a Corporate wide ban on Flash based content .. just mobile based Flash content.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
d.marcu 17th Mar 2011
You have version 10,3,162,29 installed
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
chris@... 17th Mar 2011
@d.marcu Me too happy.
0 Votes
+ -
I second the PSI recommendation.
CobraA1 17th Mar 2011
I absolutely second the PSI recommendation. Been using it, it's lightweight, and it works great. A recent update of PSI even includes the ability for it to automatically update certain products, including Adobe Flash.
0 Votes
+ -
i never install that
g_keramidas@... 17th Mar 2011
buggy software on anything.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
sjaak327 17th Mar 2011
Everyone serious about OS security should be running Secunia PSI. It nowadays is able to automatically update swiss cheese flash player, which must be one of the top applications as it comes to vulnerabilities, they have an updated version every other month or so.
0 Votes
+ -
Secunia PSI FTW
bobiroc 17th Mar 2011
I installed this on all my computers and even install it on the computers I work on the side. Have a simple how to sheet on what it does and many of the plugins update automatically. It gives a nice overview of a person's system security for many things that are installed on the computer.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
alsobannedfromzdnet Updated - 17th Mar 2011
I'll just use an iPhone or iPad, problem solved.

"What, me worry" Alfred E Neuman

PS What percentage are using no Flash?
0 Votes
+ -
trUTH:
nomoreds 17th Mar 2011
Flash is not that bad!


fakesteveballmer.blogspot.com/2011/03/rest-in-peace-zune.html
0 Votes
+ -
Secunia PSI rocks.
stormbringerPA 17th Mar 2011
Get it!
0 Votes
+ -
Why is it I keep reading articles about Flash in a bad way!?!
James Quinn 17th Mar 2011
Then people get all blanked off that Apple does not allow it on their products.. Huh!?! OK try and think about this for a while. Apple is KNOWN for being the user friendly/Easy to use company. Put Flash on it and it's been proven under testing to slow Mac's and other Apple devices down. That right there is a HIT against Apple's rep cause you know blank well that a customer using a slow Apple device is NOT likely to blame Adobe... Heck might not even know they have flash. Now have that Apple device clogged with malware!?! Oh yeah and it's all of a sudden Apple's problem and their tech support lines are off the wall with FLASH related issues and Apple's costs go up and it's rep down the drain. Me I understand why Apple chooses the Walled Garden, and to be frank I like it:)

Pagan jim
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
shellcodes_coder 17th Mar 2011
using Windows 7 and thank god it comes w/o flash happy
0 Votes
+ -
I removed Flash last weekend.
mattohare@... 18th Mar 2011
I got tired of how its updater demanded that I upgrade when I was offline. It also seemed to require a restart far too often for a browser plug in. How do I show up in those stats with no Flash installed?
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
Monkeypox 18th Mar 2011
iOS users unaffected.
0 Votes
+ -
Older versions better
jscott418 18th Mar 2011
For some with older Hardware. The newer Flash versions are more of a resource hog. They are also more geared to GPU hardware which does not help older hardware. I for one have had issues with 10.2 on Mac's. Especially those with Intel graphics. Primarily the series in the older Macbooks. No doubt security issues are important. But function is also important. I could say the same for people still using XP. But I won't.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
tom@... 18th Mar 2011
Our resident narcissist seems to have found a way to troll after all. From here on in I plan to ignore its brain-sputum.
0 Votes
+ -
RE: Almost 45% of YOU are vulnerable to Flash exploits!
jeffpk 24th Mar 2011
How many of us are running non-targeted systems though, like OSX and Linux?

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix