Adobe Unveils Another Set of Critical Patches - WinPlanet Windows Software Reviews

You are in the: Small Business Computing Channel

ť ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet

Power Search | Tips

In-Depth Reviews

Tips & Tutorials

Browsers

Chat / Conferencing

Desktop Utilities

Development

Internet Apps

Multimedia

OS Service Packs

Productivity Tools

Enter a keyword

Newsletters offering Windows news, articles, tips and reviews.

Partners & Affiliates

Small Business Computing

Ecommerce Guide

Webopedia

WinPlanet

WinPlanet / News

Download of the day

• Adobe Flash Player

Most Popular Software Downloads

• Windows Vista Service Pack 2 (Vista SP2)

• Mozilla Firefox 3

• QuickTime for Windows

• Adobe Flash Player

• Windows 7

• Norton Internet Security 2010

• Internet Explorer 8

• CCleaner (Crap Cleaner)

• Winamp

• Skype

Most Popular Software Articles

• Windows Vista Tips: Home Networking Setup Tutorial

• 10 Must-Have Apps: The Free Windows Networking Toolkit

• How to Make Your Internet Connection Faster, Better

Software Reviews

Adobe Unveils Another Set of Critical Patches
JavaScript Vulnerabilities Continue to Pose Problems
Richard Adhikari

For the second time this week, Adobe Systems has released a set of critical vulnerability patches.

An Adobe spokesperson told InternetNews.com that the vendor released six critical patches for Adobe Flash Player 9 on Thursday and eight patches for five-month-old vulnerabilities in Adobe Reader and Adobe Acrobat 8.1.3 on Tuesday.

Vulnerabilities in Adobe applications are particularly dangerous because they are widely used on the Web, Chris Wysopal, chief technology officer at application security analysis vendor Veracode told InternetNews.com.

Enterprises, which are slow to upgrade, will be hardest hit by these bugs, which target older versions of the Adobe applications, Wysopal said.

The latest versions of Adobe Reader and Acrobat are Version 9; and Adobe released Flash Player 10 in October.

The vulnerabilities in Adobe's applications are all JavaScript bugs. Wysopal said that any application that interprets JavaScript, which Adobe applications do, has a lot of vulnerabilities.

JavaScript has a global object that experts say is the root cause of cross site scripting attacks. Together with SQL injection attacks, it comprises about 60 percent of all Web site attacks.

Other applications, such as browsers, also have JavaScript vulnerabilities, but Adobe is coming under attack because it is a convenient target. Wysopal said hackers are turning their attention to applications from Adobe and other vendors using JavaScript because their traditional targets, browsers, have been hardened over the years.

"The vulnerabilities have always been there, it's just that hackers are now starting to scrutinize other client applications that interpret JavaScript and they're finding them," he added.

The popularity of Adobe's applications make it an even more desirable target. "Flash could be the most popular software in the world because it's a multiplatform application, and attackers go for large populations so they can hit the most machines," Wysopal said.

News courtesy of internetnews.com

November 6, 2008

Download Adobe Flash Player Now!

Download Adobe Reader Now!

View All Browser Add-ons

Contents:
1. JavaScript Vulnerabilities Continue to Pose Problems

Additional Articles:

Macromedia Extends Flash Show

Flash Users Advised to Upgrade

Flash 9 a Multi-Codec 'Moviestar'

Adobe Flash Player 10 Beta Brings Smoother Streaming

Adobe's Latest Flash Now Includes 3D Video

Adobe Patches Flash, But Expect More Problems

Adobe Flash Player 10 Gets Ready to Mobilize

Adobe Flash, PDF Hit by Zero-Day Flaw

Is Adobe Leaving the Web Open to Attack?

Mozilla Firefox Upgrades 10 Million Flash Users

WebMediaBrands Corporate Info

Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | Shopping | E-mail Offers | Freelance Jobs

Whitepapers and eBooks

Microsoft Articles: Visual Studio 2010
Adobe Article: Adobe Helps PHP Developers Create Rich Internet Applications
Microsoft Whitepaper: How Windows Server 2008 R2 Helps Optimize IT and Save You Money
Adobe Article: Java Developers Finding a Home at Adobe Flex
IBM Articles: A Smarter Business Needs Smarter Technology
Intel Xeon Processor Increases Server Efficiency and Capabilities
Intel Tech Brief: Automated Energy Efficiency for the Intelligent Enterprise
Oracle Whitepapers - Innovation for IT Leaders
Avaya Article: Communication-Enabled Mashups--Empowering Both Business Owners and IT

Internet.com eBook: IT Manager's Guide to Social Networking
Internet.com eBook: Get Ready for Windows 7
Microsoft Article: Expression Web 3--New Features for PHP Developers
Whitepapers: Manage Your Business Infrastracture with IBM
Whitepaper: Maximize Your Storage Investment with HP
Internet.com eBook: Becoming a Better Project Manager
Microsoft Article: Stress Free and Efficient Designer/Developer Collaboration
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

Webcast: Connecting PHP to Microsoft Technologies
Video: Microsoft Partner Program Benefits
Video: Windows Azure Debugging Tips
SAP BusinessObjects Webcast: Unlock the Power of Reporting with Crystal Reports

IBM Webcast: Speed Business Innovation with Reduced Cost and Risk
Video: Deploy Applications on Windows Azure
MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

Download: Microsoft Visual Studio 2010 Beta 2
Downloads & Free Trials: Microsoft's New Efficiency Resource Center
Get the Windows 7 SDK

Free Trial: Red Gate SQL Backup Pro 6
Iron Speed Designer Application Generator
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Internet.com Hot List: Get the Inside Scoop on the Hottest IT and Developer Products
All About Botnets

MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES