|
|||
Latest Flash Player Vulnerability
Something to think about when you try to set up flash in a BSD.
http://blogs.technet.com/b/mmpc/arch...psa11_2d00_02/ http://blogs.technet.com/b/mmpc/arch...loitation.aspx |
|
||||
I only use Flash for listening to a radio stream, so I worry not: I could always restrict it to a single browser and rig it for that task if need be. Hehe.
__________________
My Journal Thou shalt check the array bounds of all strings (indeed, all arrays), for surely where thou typest ``foo'' someone someday shall type ``supercalifragilisticexpialidocious''. |
|
|||
Latest Flash Player Vulnerability Reply to Thread
Quote:
The heart of the exploit embeds some assembly code for an Intel x86 machine that does an INT 80 to call the operating system to execute an arbitrary shell command. This same INT 80 is used in Linux x86 : http://www.cin.ufpe.br/~if817/arquiv....html#syscalls And the same INT 80 used in FreeBSD x86: http://www.int80h.org/bsdasm/ This is a good reminder of why not to run the X Window system as root... I think it is a good idea to separate business activities from entertainment activities. At home I keep one machine just for entertainment and let it run flash and whatever but I never do business on that machine... |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
New zero-day for Flash Player | J65nko | News | 1 | 18th April 2011 10:08 AM |
RSA break-in: it was the Flash Player's fault | J65nko | News | 0 | 5th April 2011 09:35 PM |
flash player | ccc | FreeBSD Ports and Packages | 9 | 23rd October 2008 12:07 PM |
Flash player threads | Carpetsmoker | FreeBSD General | 0 | 22nd October 2008 12:45 PM |
Creating a flash player | jgroch | Programming | 0 | 21st August 2008 05:27 AM |