funsec mailing list archives
Re: [Full-disclosure] Adobe Flash UpdateInstalls Other Warez without Consent
From: Jeffrey Walton <noloader () gmail com>
Date: Thu, 6 Sep 2012 13:33:04 -0400
Hi Thor, This is a corporate laptop, and it needs Flash periodically. An Adobe update process runs on occassion, prompting to install the update.
Actually, there wasn't even an option for other bits.
I did not have the option either. Jeff On Thu, Sep 6, 2012 at 1:18 PM, Thor (Hammer of God) <thor () hammerofgod com> wrote:
FYI, I updated as well, and only received the Flash bits. Actually, there wasn't even an option for other bits. It asked me at the end if I wanted auto, notify, or no update options but that was it. This was x86? T Sent from whatever device will keep us from debating which one is better. On Sep 6, 2012, at 10:09 AM, Jeffrey Walton <noloader () gmail com> wrote:The company that writes the worlds most insecure software [1,2,3] has figured out a way to further increase an attack surface. Adobe now includes additional warez in their updates without consent. The warez includes a browser and tools bar. The attached image is what I got when I agreed to update Adobe Flash because of recent security vulnerability fixes. It appears Adobe has become a whore to Google like Mozilla. +1 Adobe. [1] http://www.google.com/#q=Adobe+site%3Asecurityfocus.com. [2] http://web.nvd.nist.gov/view/vuln/search-results?query=adobe&search_type=all&cves=on [3] http://lastwatchdog.com/adobe-surpasses-microsoft-favorite-hackers-target/ [4] http://www.theregister.co.uk/2009/12/29/security_predictions_2010/ <adobe-flash-install-shit.png> _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Adobe Flash UpdateInstalls Other Warez without Consent Jeffrey Walton (Sep 06)
- Message not available
- Re: [Full-disclosure] Adobe Flash UpdateInstalls Other Warez without Consent Jeffrey Walton (Sep 06)
- Message not available
- Re: Adobe Flash UpdateInstalls Other Warez without Consent Jeffrey Walton (Sep 06)
- Re: Adobe Flash UpdateInstalls Other Warez without Consent Skyler King (Sep 06)
- Re: Adobe Flash UpdateInstalls Other Warez without Consent Jeffrey Walton (Sep 06)
- Re: Adobe Flash UpdateInstalls Other Warez without Consent Skyler King (Sep 06)