Latest Vulnerabilities...
Results 1 to 10 of 10

Thread: Latest Vulnerabilities...

  1. #1
    Senior Member C:\Saw's Avatar
    Join Date
    Jan 2008
    Posts
    125

    Exclamation Latest Vulnerabilities...

    Just lookin out for everybody...
    SANS just posted some new vulnerabilities in Adobe, Quicktime, and Firefox

    *patch, patch, patch*

    ouch, 48mb Adobe Reader update!

    http://isc.sans.org/diary.html?storyid=3955
    "...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
    --Socrates

    *Einstein Would Be Proud*

  2. #2
    Senior Member C:\Saw's Avatar
    Join Date
    Jan 2008
    Posts
    125
    Quote Originally Posted by C:\Saw
    Just lookin out for everybody...
    SANS just posted some new vulnerabilities in Adobe, Quicktime, and Firefox

    *patch, patch, patch*

    ouch, 48mb Adobe Reader update!

    http://isc.sans.org/diary.html?storyid=3955
    --oops, I meant o n l y 32mb
    "...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
    --Socrates

    *Einstein Would Be Proud*

  3. #3
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,191
    Hmmm,

    As if Adobe isn't bloated enough. What I have noticed about Adobe updates is that it seems difficult to find if alternative readers have the same vulnerabilities? that sort of makes me slightly uneasy, although I can't say that I normally open .pdf files on the fly, so at least they are getting scanned before/when I open them.

    I looked at FF, and the fixed version seems to have installed itself automagically

    Thanks for the heads up!
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  4. #4
    Senior Member C:\Saw's Avatar
    Join Date
    Jan 2008
    Posts
    125
    Yes, isn't firefox awesome? Even the most forgetful person on the planet can have the latest and greatest firefox version (unless they have IE...then it's uh oh!)
    I was wondering the exact same thing about the pdf vulnerabilities, because for a while I used the generic linux .pdf reader and lately I installed the Adobe version. I wonder if the linux developers take that into account--I'm sure they do. But still... who knows, the generic versions might even be a little safer--I sure wouldn't be surprised.

    Thanks Nihil, your posts are always helpful (including the laser-mounted sharks )
    "...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
    --Socrates

    *Einstein Would Be Proud*

  5. #5
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    Yip FF is updated , didnt even know

    Adobe is also set to update automatically.

    :/
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

  6. #6
    Senior Member Cope57's Avatar
    Join Date
    Nov 2003
    Posts
    185
    Adobe, Quicktime, and Firefox... hmm

    For Adobe PDF documents I use Evince to read them, Open Office to write them.

    Quicktime, I use VLC.

    But I use Iceweasel instead of Firefox, so do I have to try to patch it also?
    Even if it is just a renamed Firefox, does it matter which OS I am using, or is it for all OS's using those products?

    I was digging around and I did not see anything stating that it was for any particular OS, just the product themselves. But using Linux, are the products still vulnerable as to a different OS such as Windows or Mac?
    Computers do not have problems, they have users.
    ~Cope57

  7. #7
    Senior Member C:\Saw's Avatar
    Join Date
    Jan 2008
    Posts
    125
    Better safe than sorry

    Well, since there are at least 500 viruses for linux (and counting) along with rootkits (which Linux is susceptible to--not to mention if you ever use your root account online ) I would make sure that your browser is always up to date--especially if it doesn't automatically update (some people choose to manually update). So it's important that you update everything no matter the os as long as you know there wont be stability issues (like betas for instance).

    I use mplayer on linux, but since I dualboot, i have to make sure everything on xp is also up to date...ughhh

    Firefox I know automatically updates at program start (as long as you don't disable it), Adobe updates on a scheduled basis (which means you may be unpatched for awhile, so make sure you manually check for updates every now and then), and for quicktime, you have to run the apple updater (this applies to only Mac and MS since Linux obviously doesn't support Apple's software).

    Don't get me started on Win-doze Media Player!
    --glad I don't use M$ very often...only for gaming and iTunes

    I'm more comfortable online with Linux

    edit: btw Cope, I'm gonna take a look at VLC because mplayer doesn't allow fastforwarding on streams (can be very annoying). I guess the Mandriva package will install on PCLOS since it is based on it...
    I don't know much about Iceweasel, only used it a few times...go to
    Help, About, (or wherever iw stores the about info) and check your version number, then make sure it's the latest, that's all I can offer about that
    Last edited by C:\Saw; February 13th, 2008 at 04:13 AM.
    "...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
    --Socrates

    *Einstein Would Be Proud*

  8. #8
    Senior Member C:\Saw's Avatar
    Join Date
    Jan 2008
    Posts
    125
    Oh and don't forget, today was patch tuesday,
    there is a Patch Now! warning for IE
    "...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
    --Socrates

    *Einstein Would Be Proud*

  9. #9
    Senior Member phernandez's Avatar
    Join Date
    Aug 2003
    Location
    NYC
    Posts
    246
    Quote Originally Posted by C:\Saw
    Oh and don't forget, today was patch tuesday,
    there is a Patch Now! warning for IE
    Thanks for the reminder. Sure enough, that annoying yellow little shield was hiding in my systray...

  10. #10
    Senior Member
    Join Date
    Oct 2007
    Location
    do a whois search on my ip...
    Posts
    268
    Thanks for the reminder. Sure enough, that annoying yellow little shield was hiding in my systray...
    Ha, thank god for that double edged blade called automatic updates =)

Similar Threads

  1. Multiple vulnerabilities in Oracle Products
    By Spyder32 in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: September 1st, 2004, 07:28 PM
  2. I am HACKED! Help Me Please!
    By Shakira in forum Newbie Security Questions
    Replies: 9
    Last Post: February 16th, 2004, 10:07 AM
  3. NEWS: This weeks bugs and patches. 10/24/02
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: October 25th, 2002, 01:26 AM
  4. NEWS: This weeks bugs and patches
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 1
    Last Post: October 1st, 2002, 06:03 PM
  5. NEWS: Latest bugs and updates
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: August 23rd, 2002, 04:58 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •