Bugtraq mailing list archives
RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow
From: "Richard M. Smith" <rms () computerbytesman com>
Date: Fri, 9 Aug 2002 18:16:33 -0400
Is there anyway to turn off the Flash ActiveX control for Windows? I've tried removing it from my system and Web sites just keep downloading it again. If I turn off ActiveX completely, then Internet Explorer is constantly warning me that Web pages that use Flash-based banner ads will not be displayed properly. All I want to do is a surf the Web with a little less motion on the screen. I've already turned off animated GIFs which partially solves the problem. The ability to turn Flash is also important given the recent spate of Flash security holes. Richard M. Smith http://www.ComputerBytesMan.com -----Original Message----- From: Mike Chambers [mailto:mchamber () macromedia com] Sent: Friday, August 09, 2002 5:44 PM To: 'BUGTRAQ' Subject: RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow The linux and solaris updates will be avaliable later today. You will be able to download it at: www.macromedia.com/go/getflashplayer/ mike chambers mesh () macromedia com
-----Original Message----- From: Scott Lampert [mailto:scott () lampert org] Sent: Friday, August 09, 2002 3:45 PM To: BUGTRAQ Subject: Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow On Thu, Aug 08, 2002 at 05:26:20PM -0700, Marc Maiffret wrote:Vendor Status: Macromedia has released a patch for this vulnerability,available at:http://www.macromedia.com/v1/handlers/index.cfm?ID=23293&Metho
d=Full&Title=M
PSB02%2D09%20%2D%20Macromedia%20Flash%20Malformed%20Header%20Vulnerabili ty%2
0Issue&Cache=False Discovery: Drew Copley Exploitation: Riley Hassell
As far as I can see there is no update to the UNIX versions. The files
are all dated March 25. The bulletin describes version 6 of the Flash
player as the fix, however that doesn't seem to be available for
anything other than Windows and Mac. Am I missing something?
-Scott
--
Scott Lampert
<scott () lampert org>
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-Benjamin Franklin, 1759
Public Key: http://www.lampert.org/public_key.asc
Current thread:
- EEYE: Macromedia Shockwave Flash Malformed Header Overflow Marc Maiffret (Aug 09)
- Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow ismail donmez (Aug 09)
- Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Scott Lampert (Aug 09)
- RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Mike Chambers (Aug 09)
- RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Richard M. Smith (Aug 10)
- Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Carlos Laviola (Aug 12)
- RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Drew (Aug 13)
- RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Mike Chambers (Aug 09)
- Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Tim Jackson (Aug 09)
- <Possible follow-ups>
- Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow Will Bryant (Aug 13)