Windows 10: Flash zero-day flaw under attack to spread ad malware...

Page 2 of 4 FirstFirst 1234 LastLast

  1. Posts : 639
    Windows 10 1703 Pro 64
       22 Jan 2015 #11

    According to the MS advisory there is an update for Technical Preview.

    https://technet.microsoft.com/library/security/2755801

    Jim
      My ComputerSystem Spec


  2. Posts : 1,467
    W7 Ultimate SP1 (64 bit), LM 18.1 MATE (64 bit), W10IP VM, W10 Home
       22 Jan 2015 #12

    labeeman said: View Post
    Nope they just need to get rid of Flash.
    Agreed.
    People need to stop including Flash in their website code.

    Flash programs (e.g. games) should be run in a standalone VM (i.e. no network connections).

    Phone Man said: View Post
    I agree. Got rid of Java a few years ago. It was #1 and flash #2 , now Flash is #1 .
    Java is another abomination.
    I haven't run Java outside of a VM, for at least 5 years.

    When my friend and I first read about Java (many years ago) we both thought that it was "a disaster waiting to happen".
      My ComputerSystem Spec


  3. Posts : 3,176
    insider build 10586.3 win10 pro 64
       22 Jan 2015 #13

    lehnerus2000 said: View Post
    When my friend and I first read about Java (many years ago) we both thought that it was "a disaster waiting to happen".
    kind of like putting a computer in the hands of 5billlion people
      My ComputerSystem Spec


  4. Posts : 639
    Windows 10 1703 Pro 64
       22 Jan 2015 #14

    Flash was updated to day to fix this exploit. (Flash 16.0.0.287). But then they found another exploit in this new version and it will be patched the week of Jan 26

    Adobe Product Security Incident Response Team (PSIRT) Blog | Working to help protect customers from vulnerabilities in Adobe software. Contact us at PSIRT(at)adobe(dot)com.

    Jim
      My ComputerSystem Spec

  5.    23 Jan 2015 #15

    Hi there

    apart from the vulnerabilities of Flash and Java this amplifies my often made point about using 3rd part AV software on W8/8.1/W10 - that it's a total and utter waste of time. Ms can react far quicker and issue an update to Windows defender which is part of the proprietary windows code. 3rd party suppliers have to reverse engineer windows kernel (not easy) and do any number of things to ensure their stuff works and reverse engineering or "dis-assembling" a complex system like windows isn't a trivial task.

    3rd party AV suppliers have had their time -- it's GONE now -- any Windows OS past W7 doesn't need this stuff any more.

    (Home computers of course --protecting large corporate networks is another issue but then you are talking about Enterprise grade packages - both complex and definitely not cheap).

    I'm still amazed at how many times I get pestered in a computer retail store to buy an add on "AV" package if I'm say getting a laptop or whatever. The sales staff simply can't believe when I say - don't bother selling me Norton or whatever - Windows has a perfectly good built in system already.

    Cheers
    jimbo
      My ComputerSystem Spec


  6. Posts : 3,506
    Win_8.1-Pro, Win_10.1607-Pro, Mint_17.3
       23 Jan 2015 #16

    HTML5 should replace all Flash references, the same way Barry Allen replaced Jay Garrick.
    Over time, it will - I only wish it were faster.
      My ComputerSystem Spec


  7. Posts : 1,546
    W7 32 bit, Linux Mint Xfce 18 64 bit
       23 Jan 2015 #17

    jimbo45 said: View Post
    Hi there

    apart from the vulnerabilities of Flash and Java this amplifies my often made point about using 3rd part AV software on W8/8.1/W10 - that it's a total and utter waste of time. Ms can react far quicker and issue an update to Windows defender which is part of the proprietary windows code. 3rd party suppliers have to reverse engineer windows kernel (not easy) and do any number of things to ensure their stuff works and reverse engineering or "dis-assembling" a complex system like windows isn't a trivial task.

    3rd party AV suppliers have had their time -- it's GONE now -- any Windows OS past W7 doesn't need this stuff any more.

    (Home computers of course --protecting large corporate networks is another issue but then you are talking about Enterprise grade packages - both complex and definitely not cheap).

    I'm still amazed at how many times I get pestered in a computer retail store to buy an add on "AV" package if I'm say getting a laptop or whatever. The sales staff simply can't believe when I say - don't bother selling me Norton or whatever - Windows has a perfectly good built in system already.

    Cheers
    jimbo
    Jimbo45,

    Even though I don't like Norton's virus protection. This time Symantec had an update before MSE or defender did-it was report that way.
      My ComputerSystem Spec


  8. Posts : 639
    Windows 10 1703 Pro 64
       23 Jan 2015 #18

    Thank you Malewarebytes Anti-Exploit.
    After fully updating Flash and Windows 8.1 I was browsing my local TV station.
    Clicked on a Flash video and ZAP! MB A-E blocked an exploit.
    So I will run extra protection but to each his own.

    Jim
      My ComputerSystem Spec


  9. Posts : 639
    Windows 10 1703 Pro 64
       24 Jan 2015 #19

    Adobe has fixed the exploit in 16.0.0.287 and new version to be release real soon.

    UPDATE (January 24): users who have enabled auto-update for the Flash Player desktop runtime will be receiving version 16.0.0.296 beginning on January 24. This version includes a fix for CVE-2015-0311. Adobe expects to have an update available for manual download during the week of January 26, and we are working with our distribution partners to make the update available in Google Chrome and Internet Explorer 10 and 11.
      My ComputerSystem Spec


  10. Posts : 1,467
    W7 Ultimate SP1 (64 bit), LM 18.1 MATE (64 bit), W10IP VM, W10 Home
       24 Jan 2015 #20

    Phone Man said: View Post
    Adobe has fixed the exploit in 16.0.0.287 and new version to be release real soon.
    Since we are talking about Adobe, have they fixed the exploits in 16.0.0.296?
      My ComputerSystem Spec


 
Page 2 of 4 FirstFirst 1234 LastLast

Related Threads
Latest Version of Malwarebytes in AntiVirus, Firewalls and System Security
Latest Version of Malwarebytes Released Version 3.1.2.1733 Release Date: May 10th 2017 Malwarebytes download link Malwarebytes Trial Download Page Release Notes: Malwarebytes 3.1 (Latest version)
Source: Use an Anti-Exploit Program to Help Protect Your PC From Zero-Day Attacks For more information and download links, go to this thread: Latest Version Malwarebytes Anti Exploit
Java zero-day security flaw exploited in the wild in AntiVirus, Firewalls and System Security
Java zero-day security flaw exploited in the wild | ZDNet
Solved Windows Defender claims malware in AntiVirus, Firewalls and System Security
Just by starting up I.E., Windows defender claims that it is taking action to clean delete malware. I have ran WD, Malwarebytes etc with no problems. Antisuperspyware claims "Trojan agent/gen-downloader" and adware.dealply/variant claims they...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 05:00.
Find Us