-
February 8th, 2008, 10:35 PM
#1
Latest Vulnerabilities...
Just lookin out for everybody...
SANS just posted some new vulnerabilities in Adobe, Quicktime, and Firefox
*patch, patch, patch*
ouch, 48mb Adobe Reader update!
http://isc.sans.org/diary.html?storyid=3955
"...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
--Socrates
*Einstein Would Be Proud*
-
February 8th, 2008, 10:47 PM
#2
Originally Posted by C:\Saw
--oops, I meant o n l y 32mb
"...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
--Socrates
*Einstein Would Be Proud*
-
February 11th, 2008, 03:52 PM
#3
Hmmm,
As if Adobe isn't bloated enough. What I have noticed about Adobe updates is that it seems difficult to find if alternative readers have the same vulnerabilities? that sort of makes me slightly uneasy, although I can't say that I normally open .pdf files on the fly, so at least they are getting scanned before/when I open them.
I looked at FF, and the fixed version seems to have installed itself automagically
Thanks for the heads up!
-
February 12th, 2008, 01:07 AM
#4
Yes, isn't firefox awesome? Even the most forgetful person on the planet can have the latest and greatest firefox version (unless they have IE...then it's uh oh!)
I was wondering the exact same thing about the pdf vulnerabilities, because for a while I used the generic linux .pdf reader and lately I installed the Adobe version. I wonder if the linux developers take that into account--I'm sure they do. But still... who knows, the generic versions might even be a little safer--I sure wouldn't be surprised.
Thanks Nihil, your posts are always helpful (including the laser-mounted sharks )
"...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
--Socrates
*Einstein Would Be Proud*
-
February 12th, 2008, 11:09 AM
#5
Yip FF is updated , didnt even know
Adobe is also set to update automatically.
:/
The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
Albert Einstein
-
February 12th, 2008, 10:38 PM
#6
Adobe, Quicktime, and Firefox... hmm
For Adobe PDF documents I use Evince to read them, Open Office to write them.
Quicktime, I use VLC.
But I use Iceweasel instead of Firefox, so do I have to try to patch it also?
Even if it is just a renamed Firefox, does it matter which OS I am using, or is it for all OS's using those products?
I was digging around and I did not see anything stating that it was for any particular OS, just the product themselves. But using Linux, are the products still vulnerable as to a different OS such as Windows or Mac?
Computers do not have problems, they have users.
~Cope57
-
February 13th, 2008, 02:51 AM
#7
Better safe than sorry
Well, since there are at least 500 viruses for linux (and counting) along with rootkits (which Linux is susceptible to--not to mention if you ever use your root account online ) I would make sure that your browser is always up to date--especially if it doesn't automatically update (some people choose to manually update). So it's important that you update everything no matter the os as long as you know there wont be stability issues (like betas for instance).
I use mplayer on linux, but since I dualboot, i have to make sure everything on xp is also up to date...ughhh
Firefox I know automatically updates at program start (as long as you don't disable it), Adobe updates on a scheduled basis (which means you may be unpatched for awhile, so make sure you manually check for updates every now and then), and for quicktime, you have to run the apple updater (this applies to only Mac and MS since Linux obviously doesn't support Apple's software).
Don't get me started on Win-doze Media Player!
--glad I don't use M$ very often...only for gaming and iTunes
I'm more comfortable online with Linux
edit: btw Cope, I'm gonna take a look at VLC because mplayer doesn't allow fastforwarding on streams (can be very annoying). I guess the Mandriva package will install on PCLOS since it is based on it...
I don't know much about Iceweasel, only used it a few times...go to
Help, About, (or wherever iw stores the about info) and check your version number, then make sure it's the latest, that's all I can offer about that
Last edited by C:\Saw; February 13th, 2008 at 04:13 AM.
"...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
--Socrates
*Einstein Would Be Proud*
-
February 13th, 2008, 04:05 AM
#8
Oh and don't forget, today was patch tuesday,
there is a Patch Now! warning for IE
"...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
--Socrates
*Einstein Would Be Proud*
-
February 13th, 2008, 04:53 PM
#9
Originally Posted by C:\Saw
Oh and don't forget, today was patch tuesday,
there is a Patch Now! warning for IE
Thanks for the reminder. Sure enough, that annoying yellow little shield was hiding in my systray...
-
February 13th, 2008, 09:12 PM
#10
Thanks for the reminder. Sure enough, that annoying yellow little shield was hiding in my systray...
Ha, thank god for that double edged blade called automatic updates =)
Similar Threads
-
By Spyder32 in forum Miscellaneous Security Discussions
Replies: 0
Last Post: September 1st, 2004, 06:28 PM
-
By Shakira in forum Newbie Security Questions
Replies: 9
Last Post: February 16th, 2004, 10:07 AM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 0
Last Post: October 25th, 2002, 12:26 AM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 1
Last Post: October 1st, 2002, 05:03 PM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 0
Last Post: August 23rd, 2002, 03:58 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|