Must Read: No niche for iPad: Why I returned mine

Topic: Enterprise Software

Flash Player dirty dozen: Adobe plugs code execution holes

Summary: Adobe has slapped a "critical" rating on this bulletin and recommends that all affected users apply the patch immediately.

Ryan Naraine

By for Zero Day |

Adobe has issued a warning for a dozen serious security vulnerabilities in its widely distributed Flash Player software.

The security holes, which affect Windows, Mac OS X, Linux and Solaris users, could allow remote code execution attacks via rigged Flash Player files.

The company shipped Flash Player 11.1.102.55 with patches for the 12 documented vulnerabilities.

  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2445).
  • This update resolves a heap corruption vulnerability that could lead to code execution (CVE-2011-2450).
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2451).follow Ryan Naraine on twitter
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2452).
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2453).
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2454).
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2455).
  • This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2011-2456).
  • This update resolves a stack overflow vulnerability that could lead to code execution (CVE-2011-2457).
  • This update resolves a vulnerability that could lead to a cross-domain policy bypass (Internet Explorer-only) (CVE-2011-2458).
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2459).
  • This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2011-2460).

Adobe has slapped a "critical" rating on this bulletin and recommends that all affected users apply the patch immediately.

Topic: Enterprise Software

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

26 comments
Log in or register to join the discussion

  • RE: Flash Player dirty dozen: Adobe plugs code execution holes

    Do these guys even test Flash updates, before they foist them on the unsuspecting public?
    lehnerus2000
    Reply Vote

    • RE: Flash Player dirty dozen: Adobe plugs code execution holes

      @lehnerus2000

      You could say the same about operating systems and browsers. Security patching won't end... ever. It's one big reason this blog even exists.
      betelgeuse68
      Reply Vote

      • Less Code = Easier Debugging

        @betelgeuse68 <br>Linux and Windows kernels have millions of lines of code.<br>Operating systems have to interact with multiple different programs and hardware devices (simultaneously).<br>Surely a "video" player doesn't.<br><br>Something like Flash, only has to present output to an OS.<br><br>IMO, programs (like browsers, Flash, etc.) have less excuse for holes, than operating systems.
        lehnerus2000
        Reply Vote

      • RE: Flash Player dirty dozen: Adobe plugs code execution holes

        @betelgeuse68
        OpenSource systems almost never need security patches. Problems seem to be anticipated far ahead of time and fixed before even reaching the beta testing stage.

        Perhaps proprietary coders should be paid to work in at least 1 OpenSource project before being allowed to work on proprietary systems so that they learn the discipline, best practice and high standards that are taken for granted in OpenSource projects.

        Actually i don't think it's the programmers fault. I think proprietary projects are too keen to keep secrets even within a project so that coders don't really see how their part of the puzzle fits into the whole. This would seem to make proprietary stuff a breeding-ground for problems.
        Regards from
        Tom :)
        Tom6
        Reply Vote

      • RE: Flash Player dirty dozen: Adobe plugs code execution holes

        @Tom6 wrote:<br>"OpenSource systems almost never need security patches.<br><br>This is neither helpful nor accurate. It's not helpful because open-source alternatives to Flash, Gnash and Lightspark, are either not available for Windows or are not (ahem, Gnash I'm looking at you) current. And the Windows desktop, with it's approx. 90% market share, is where the miscreants take advantage of Flash vulnerabilities, both unpatched and 0-day.<br><br>Helpful advice for those using Flash Player on Windows would be to install Google's Chrome browser which includes the Flash Player plug-in and keeps it updated transparently. On Windows, at least, Google has also provided some protection in the form of sandboxing for the Flash plug-in. Chrome allows the user to whitelist favorite sites that require Flash which decreases one's attack surface by not allowing Flash to run everywhere. In addition, one can download, install and configure the NotScripts extension for Chrome (it's similar to the NoScript add-on for Firefox discussed elsewhere in this thread).<br><br>It's not accurate because open-source software, if it's still maintained, gets plenty of security patches. For example, Debian:<br><br> <a href="http://www.debian.org/security/2011/" target="_blank" rel="nofollow">http://www.debian.org/security/2011/</a><br><br>Note that there have been five (5) Linux kernel updates thus far in 2011. There have also been four (4) patches for vlc, seven (7) patches for ice weasel (aka Firefox for Debian) and five (5) patches for the Chromium browser, all popular open-source apps running on Debian. And I should know as Debian is my primary desktop Linux system.<br><br>With regard to Flash on the Linux desktop, most desktop Linux distros do a great job of keeping it patched through their built-in package manager. In addition, many distros have open-source Flash alternatives such as Gnash and Lightspark available through either official or unofficial repositories. Most Linux users go with Flash as it generally has superior performance. However, it really depends on the web sites one frequents.<br><br>Bottom-line is that, for Windows users, Google's Chrome browser provides the safest and most secure browsing experience for Flash Player amongst all of the web browsers. Desktop Linux users can use any browser they like and enjoy both safety and security with Flash Player.
        Rabid Howler Monkey
        Reply Vote

    • RE: Flash Player dirty dozen: Adobe plugs code execution holes

      @lehnerus2000 hah....there is something better then flashplayer here: http://www.technologyfazer.com/the-razer-cloud-based-synapse-2-0.html
      nomikhokher
      Reply Vote

    • RE: Flash Player dirty dozen: Adobe plugs code execution holes

      I would think its impossible to test every possible combination of holes in any software that has to work in a network environment where there could be millions of possible combinations with packet requests and responses. Anything that works on a network is open for vulnerability. There will be no end to this fight. Its unfortunate that us users have to endure such risk if we want to use the system. we have to be careful and use common sense.

      Jerry G.
      jerryg50
      Reply Vote

      • RE: Flash Player dirty dozen: Adobe plugs code execution holes

        @nomikhokher
        I'm not sure how that helps with web page videos though.

        @jerryg50
        Agreed (sort of).
        IMO, the problem is the same thing that Windows is always accused of, bloat/feature creep.

        How many Notepad or Calculator exploits have you heard about?
        lehnerus2000
        Reply Vote

    • dsffds

      Wholesale Toys Wholesale Banner http://www.chinawholesaletown.com/wholesale-Flash-Gift/ World Cup Products
      Manicure Set Garden Decorations http://www.chinawholesaletown.com/wholesale-Tellurion/ Umbrella
      Lunch Box Wholesale Mouse http://www.chinawholesaletown.com/wholesale-Clothes-Rack/ Wedding Favors
      Wine Set Industrial Supplies http://www.chinawholesaletown.com/wholesale-Pen-Holder/ Scarf
      Wholesale Sticker Wholesale Stationery http://www.chinawholesaletown.com/wholesale-Waterproof-Case/ Poncho
      Wholesale Clothing Wholesale Flag http://www.chinawholesaletown.com/wholesale-Wine-Set/ Ruler
      Wholesale Flashlight Wholesale Helmet http://www.chinawholesaletown.com/wholesale-MP3---MP4---MP5-Player/ lable
      Wholesale Wallet Writing Instrument http://www.chinawholesaletown.com/ Baby Products Suppliers
      Wholesale Lanyard Wholesale Pin http://www.chinawholesaletown.com/ Book Light
      Lady Beauty Care Wholesale Earphone http://www.chinawholesaletown.com/wholesale-Silicone/ Earphone
      Electroluminescent Wholesale Gift Bags http://www.chinawholesaletown.com/wholesale-Solar-Products/ Fishing Supplies
      Wholesale Badge Advertising Material http://www.chinawholesaletown.com/wholesale-Stuffed-Animals/ Vase
      Wholesale Speakers Pen Holder http://www.chinawholesaletown.com/wholesale-Racks/ Furniture
      Wholesale Coaster Wholesale Magnifier http://www.chinawholesaletown.com/wholesale-Camera/ Mirror
      Wholesale Compass Wholesale Whistle http://www.chinawholesaletown.com/ Audio Video Equipment
      Poncho Raincoat Wholesale Mp3 http://www.chinawholesaletown.com/wholesale-Glasses/ Mobile Phone
      Health Care Products Wholesale Hardware Tools http://www.chinawholesaletown.com/wholesale-Recorder-Pen/ Pin
      Wholesale Flag Wholesale Binoculars http://www.chinawholesaletown.com/wholesale-Business-Gift/ China Wholesale
      Audio Video Equipment Coca Cola Gifts http://www.chinawholesaletown.com/wholesale-Sport-Items/ Coin Bank
      Wholesale Mouse Wholesale Puzzle http://www.chinawholesaletown.com/wholesale-Fan/ Scissors
      Wholesale Calendar Wholesale Racks http://www.chinawholesaletown.com/wholesale-Apron/ Jewelry
      Wholesale Umbrella Electroluminescent http://www.chinawholesaletown.com/wholesale-Entertainment/ First Aid Kit
      Wholesale Whistle Wholesale Scale http://www.chinawholesaletown.com/wholesale-Pen/ Clothes Rack
      Wholesale Towel Entertainment Supplies http://www.chinawholesaletown.com/wholesale-Dartboard/ Dartboard
      Wholesale Glasses Fishing Supplies http://www.chinawholesaletown.com/wholesale-Binoculars/ USB Flash Drive
      Reflective Safety Vest Wholesale Pom Poms http://www.chinawholesaletown.com/wholesale-Ashtray/ Watch
      Bottle Opener Wholesale Mobile Phone http://www.chinawholesaletown.com/wholesale-Kitchenware/ Pedometer
      Wholesale Banner Wholesale Clap Hands http://www.chinawholesaletown.com/wholesale-Radio/ Calculator
      Wholesale Clap Hands Wholesale USB Products http://www.chinawholesaletown.com/wholesale-Cup/ Banner
      Garden Decorations Wholesale Speakers http://www.chinawholesaletown.com/wholesale-Bag/ Frisbee
      Wholesale Cards Sport Support Products http://www.chinawholesaletown.com/wholesale-Helmet/ Speakers
      Wholesale Halloween Gift Men Beauty Care http://www.chinawholesaletown.com/wholesale-Book-Light/ Pen Holder
      Wholesale Bracelet Silicone Products http://www.chinawholesaletown.com/wholesale-Medicine-Instrument/ Fan
      Christmas Gifts Outdoor Leisure Products http://www.chinawholesaletown.com/wholesale-Money-Bank/ Recorder Pen
      Wholesale Scissors Wholesale Lighter http://www.chinawholesaletown.com/wholesale-Jewelry/ Heating Products
      Wholesale Candle Wholesale Golf Products http://www.chinawholesaletown.com/wholesale-Clothing/ Stuffed Animals
      Wholesale Lighter Wholesale Stress Ball http://www.chinawholesaletown.com/wholesale-Water-Bottle/ Cap
      jywhy888
      Reply Vote

  • RE: Flash Player dirty dozen: Adobe plugs code execution holes

    lol, this is the reason I will never install that security nightmare flash. I use Chrome and flash will always be disabled ;)
    shellcodes_coder
    Reply Vote

    • RE: Flash Player dirty dozen: Adobe plugs code execution holes

      @shellcodes_coder
      Consider running Firefox with No Scripts addon, it's great. You can choose to allow flash content or anything else on a website to run but by default nothing runs.
      PhillyIT
      Reply Vote

      • Agreed

        @PhillyIT +1

        NoScript + my other favourite addon, Adblock have revolutionised my browsing experience.

        Means you, the user, chooses what you see on-screen and what scripts and flash objects you wish to allow.

        Just to be safe, I run the whole lot, as a non-root user, on Kubuntu Linux and have done so for nearly five years. Care to guess how many malware infections I've had in that time? lol :-)

        Best wishes, G.
        mrgoose
        Reply Vote

      • RE: Flash Player dirty dozen: Adobe plugs code execution holes

        @PhillyIT
        does that block those anoying pulse360 pop-unders?
        Jaytmoon
        Reply Vote

      • AdBlock

        @Jaytmoon

        Probably a job for AdBlock rather than Noscript. AdBlock's strength is that you can "ban" an entire site or any URL on that site. Also supports wildcards. For example you can "ban" certain transparent gifs that are supposed to protect images from downloading. It also makes Yahoo and other freemail pages bearable because you can simply ban all the advertising content that you don't like

        In a nutshell, once you have identified where advertising rubbish comes from, you can ban it with AdBlock, and never have to look at the bloody things, ever again! :-)

        Best wishes, G.
        mrgoose
        Reply Vote

    • RE: Flash Player dirty dozen: Adobe plugs code execution holes

      @shellcodes_coder <br>But, Chrome is itself spyware from Google. Better to use Firefox and NoScript, Flashblock, and perhaps Ghostery.
      jorjitop
      Reply Vote

  • RE: Flash Player dirty dozen: Adobe plugs code execution holes

    Stack overflow, Buffer overflow, memory corruption, heap corruption, etc, etc...
    Has Adobe ever heard of a QA process?
    Thankfully I don't allow their dross on any of my systems.
    Agnostic_OS
    Reply Vote

  • Has Google sandboxed Flash Player in Chrome yet?

    Approximately a year ago, to great fanfare, Google announced it's intention to fully sandbox Flash Player inside it's built-in Chrome's sandbox. And earlier this year, Vupen discovered a vulnerability that enabled them to break out of Chrome's built-in sandbox. According to Vupen, this vulnerability involved Flash Player (Google disagreed with this) which, at the time, had not been fully sandboxed.<br><br>Has Google completed this task? And if so, is Flash Player sandboxed inside of Chrome on all platforms, including Windows, Mac OS X and Linux?
    Rabid Howler Monkey
    Reply Vote

    • RE: Flash Player dirty dozen: Adobe plugs code execution holes

      @Rabid Howler Monkey sandbox for flash was and is fully implemented at that time too. They just managed to get out of the sandbox via security holes in flash but they did say it was one of the most complicated exploit code
      shellcodes_coder
      Reply Vote

  • RE: Flash Player dirty dozen: Adobe plugs code execution holes

    mustn't be that much exciting to have a job, trying to fix this dodo.
    Silex
    Reply Vote

  • RE: Flash Player dirty dozen: Adobe plugs code execution holes

    Suppose I want to know if I need to update:
    - what is the name of the product ? : Adobe Flash ? Macromedia Flash ? Shockwave Flash ? Flash Plugin ? , Flash Activex ? ... etc -
    - should old versions of products with these names be uninstalled or somehow removed ?
    - where is the correct place to find the Flash download so that I can use IE8 to visit the (way too many) sites that don't work without Flash ?
    dsomerv
    Reply Vote
CNET Join | Log In | Privacy | Cookies Close