Hardware 2.0

Adrian Kingsley-Hughes

Get Hardware 2.0 via:: Mobile; RSS; Email Alerts
Bios:: Adrian’s Bio

July 29th, 2009

UPDATE x1: Is it time to dump Adobe's Flash player?

Posted by Adrian Kingsley-Hughes @ 3:10 am

Categories: Software

Tags: Adobe Systems Inc., Adobe Acrobat Reader, Adobe Flash Player, Hacker, Hacking, Security, Adrian Kingsley-Hughes

With news that 92% of Windows PCs are vulnerable to a zero-day attack that Adobe won’t patch until Thursday, is it time to dump Adobe’s Flash player?

The most current versions of Flash player, 9.0.159.0 and 10.0.22.87, are both vulnerable to hackers. According to security companies, hackers are launching wave after wave of attacks, using both malicious websites, and websites that have been compromised.

I dumped Adobe Acrobat reader a while ago, replacing it with the excellent FoxIt Reader. Sure, this software isn’t perfect, but it doesn’t have the massive install base that Adobe Reader has, so it goes under the radar of hackers at present. Dumping Adobe Reader was a good move, but having Flash installed now seems like handing over PCs to the bad guys.

What’s more shocking about this recent vulnerability is that Adobe has known about it for seven months but ignored it until now. Seven months!!!

I know that pretty much every time we talk about Windows security we end up talking about Microsoft and what it is doing to make computing safer for everyone, but it’s now also time to realize that there are other companies with products that have a huge impact of security, and that maybe it’s time for these companies to take security seriously.

[UPDATE: Looks like Adobe is blaming Microsoft for the bad code!]

Could you live without Flash player?

Adrian Kingsley-Hughes Adrian is a technology journalist and author who has devoted over a decade to helping users get the most from technology. He also runs a popular blog called The PC Doctor. See his full profile and disclosure of his industry affiliations

Want to get in touch? Got a tip? Feel free to drop me a note! I ALWAYS respect anonymity. I'm also on Twitter (@the_pc_doc)

Right to Reply: Should any industry representatives wish to comment on any posts on Hardware 2.0, I will be happy to publish their reply verbatim on this blog.

Subscribe to Hardware 2.0 via Email alerts or RSS.

Talkback
Most Recent of 138 Talkback(s)

Thread View
Flat View

RE: Is it time to dump Adobe's Flash player?: In 2 areas of Windows products Adobe has a very sloppy code and very low inclination to improve their software quality.

One of course is the Adobe Flash Player. I remember a few times when it t... (Read the rest); Posted by: the_fiddler_on_the_roof Posted on: 08/24/09 You are currently: a Guest | Log in | Terms of Use

Yup it's time to do so shellcodes_coder | 07/29/09

Another reason... shellcodes_coder | 07/29/09

Adobe Flash uses more CPU.... TalentSupporter | 07/29/09

Silverlight 3 Rocks! keoz | 07/29/09

That's "I do not think any alternatives will come in the next two decades" HypnoToad72 | 08/13/09

Correction: Flash *does* actually run in a sandbox honeymonster | 07/29/09

And... Spiritusindomit@... | 07/30/09

silverlight sucks paulcampagna.com | 07/29/09

Thanks for an insightful and well-reasoned post (NT) honeymonster | 07/29/09

Are you minumum wage worker in Adobe ????? TalentSupporter | 07/29/09

Unemployed is more like it BFD | 07/29/09

No, I think he's an "Ivy League" graduate mistermachine | 07/29/09

Still living at home RIAAsucks | 07/29/09

LOL - That was great! nt USTechHead | 07/29/09

Sounds like a song Dr. John | 07/31/09

perhaps not the latest version of Silverlight the_fiddler_on_the_roof | 07/29/09

Start using Opera for per-site preferences guptasameer@... | 08/14/09

silverlight sucks Budster1 | 07/30/09

Says the boy... Spiritusindomit@... | 07/30/09

Silverlight is a privacy hole Paul NY | 07/29/09

Huh? BFD | 07/29/09

That's what . . . JLHenry | 07/29/09

What on earth are you talking about? No_Ax_to_Grind | 07/29/09

Time to switch to SilverLight LBiege | 07/29/09

Get real guys! You're missing something, and the answer isn't HTML5!! almo70 | 07/29/09

Not *entirely* true... Spiritusindomit@... | 07/30/09

Silverlight is not an answer putt1ck | 07/29/09

he's right rparker009 | 07/29/09

Open Source FLP /A\V/ | 07/29/09

wrong keoz | 07/29/09

And it never will be. GOTBO | 07/30/09

Only IE vulnerable blaacksheep | 07/29/09

RE: Is it time to dump Adobe's Flash player? ozguy | 07/29/09

For non-techies Flash is a must. nt T1Oracle | 07/29/09

Re: For non-techies Flash is a must. nt almo70 | 07/29/09

You have not idea. magallanes | 07/29/09

Re: You have not idea. almo70 | 07/29/09

Ordinary computer users are not going to let go of Flash T1Oracle | 07/30/09

Flashblock willt1984@... | 07/29/09

RE: Is it time to dump Adobe's Flash player? dreimanis | 07/29/09

RE: Is it time to dump Adobe's Flash player? taranfx@... | 07/29/09

Life without flash player karnok.d@... | 07/29/09

this flaw affects all systems, not only windows! directory | 07/29/09

only windows gertruded | 07/29/09

there's nothing prevents to write a working exploit for linux and mac directory | 07/29/09

hackers are targeting the most used platform, Windows gertruded | 07/29/09

I'm amazed AndyCee | 07/29/09

The faulty file is called authplay.dll. gertruded | 07/29/09

T, FTFY ye | 07/29/09

some basic common sense nickdangerthirdi@... | 07/29/09

Dumbed Down users notsofast | 07/29/09

If your Windows box is "off the I'net" how do you update it? Jim-MN | 07/29/09

Hacking OS X and Linux pc_techs_ct@... | 07/29/09

SOLUTION: in IE8 you can authorize Flash only on a restricted list of sites directory | 07/29/09

A site you * trust * may be compromised which negates any Green Listing N/T DevJonny | 07/29/09

funny that the same thing is not applied to NoScript's fan-boys! directory | 07/29/09

NoScript fan right here!.. DevJonny | 07/29/09

How do you know . . . sporkfighter | 07/29/09

Entrenched insecurity keebaud@... | 07/29/09

Unfortunately we're stuck with Flash gertruded | 07/29/09

Don't leave security up to the Folks who write Apps--Use a Sandbox Dietrich T. Schmitz | 07/29/09

Never thought I'd see the day when Dietrich advocates Vista. ye | 07/29/09

Do you ever change Firefox settings? honeymonster | 07/29/09

Good Discussion but... Dietrich T. Schmitz | 07/29/09

Completely agreed honeymonster | 07/29/09

As much as I would LOVE to get rid of it Michael Kelly | 07/29/09

Adrian... mrlinux | 07/29/09

I don't miss flash.... wkulecz | 07/29/09

Might was well use lynx Duke E. Love | 07/29/09

YES! kd5auq | 07/29/09

Not so much is it time to dump Adobe as it is time to choose security ejhonda | 07/29/09

An opinion honeymonster | 07/29/09

Appreciated, but... ejhonda | 07/29/09

Dump Adobe? Duke E. Love | 07/29/09

RE: Is it time to dump Adobe's Flash player? PierreCardell | 07/29/09

Firefox embedded video NCWeber | 07/29/09

RE: Is it time to dump Adobe's Flash player? djmik | 07/29/09

It's not just Adobe jred | 07/29/09

Back in Macromedia's day j.m.galvin | 07/29/09

My Linux is also affected, but I can't miss Adobe Flash Player pjotr123 | 07/29/09

Is not affected putt1ck | 07/29/09

Yes, flash is a resource hog... JonathonDoe | 07/29/09

RE: Is it time to dump Adobe's Flash player? NCWeber | 07/29/09

RE: Is it time to dump Adobe's Flash player? Loverock Davidson | 07/29/09

Not just linux jred | 07/29/09

Just like MLB.TV... maskman01 | 07/29/09

Both Flash and Silverlight need to be retooled... nix_hed | 07/29/09

RE: Is it time to dump Adobe's Flash player? angiek | 07/29/09

End users don't care. Developers do. voyager529 | 07/29/09

You're a wee bit off j.m.galvin | 07/29/09

RE: Is it time to dump Adobe's Flash player? marvcohen | 07/29/09

Yes dump Flash....and Silverlight as well... storm14k | 07/29/09

This really sounds more like a mixed flash/acrobat vulnerability. D. W. Bierbaum | 07/29/09

In addition, I'm curious about a point of sandbox order... D. W. Bierbaum | 07/29/09

If I dump it, where will I get my annoying ads Boot_Agnostic | 07/29/09

It's Time to Dump All of them! sbarman | 07/29/09

Lynx may make a comeback! happy

D. W. Bierbaum | 07/29/09

RE: Is it time to dump Adobe's Flash player? deadguy69@... | 07/29/09

RE: Is it time to dump Adobe's Flash player? almo70 | 07/29/09

RE: Is it time to dump Adobe's Flash player? ColdFusion_z | 07/29/09

It's BEYOND TIME to DUMP CRAPdobe!!!! jimiznhb | 07/29/09

RE: Is it time to dump Adobe's Flash player? dobick@... | 07/29/09

DUMP Flash, KEEP Silverlight Speednet | 07/29/09

Nice troll bait Adrian. Duke E. Love | 07/29/09

RE: Is it time to dump Adobe's Flash player? mggardner | 07/29/09

Silverlight is a good change... Narg | 07/29/09

RE: Is it time to dump Adobe's Flash player? kluvender@... | 07/29/09

RE: Is it time to dump Adobe's Flash player? pc_techs_ct@... | 07/29/09

RE: Is it time to dump Adobe's Flash player? iMaverick | 07/29/09

What are you going to use instead? bmeacham98@... | 07/29/09

Exactly my question also !! ZoltanZ | 07/29/09

RE: Is it time to dump Adobe's Flash player? ZoltanZ | 07/29/09

Awwww. Flash is actually the first casuality of the *Microsoft* ATL bug honeymonster | 07/29/09

RE: Is it time to dump Adobe's Flash player? huntja@... | 07/29/09

Hysteria People | 07/29/09

RE: [UPDATE: Looks like Adobe is blaming Microsoft for the bad code!] People | 07/29/09

What's Flash ? Clockwork Computer | 07/29/09

RE: Is it time to dump Adobe's Flash player? gkeramidas@... | 07/29/09

I already removed from this browser! privacy matters | 07/29/09

RE: Is it time to dump Adobe's Flash player? z3r0_f4ct0r | 07/29/09

"Many eyes" looking at ATL code didn't find the bugs? PB_z | 07/29/09

Alarmist Noise sdelamater | 07/29/09

YES! brokenspokes | 07/29/09

One exception, and that is YouTube. Grayson Peddie | 07/29/09

Out of the frying pan and GOTBO | 07/30/09

LOL satelshawn | 07/30/09

Don't Buy a Mac Mac_Usah | 07/30/09

So much for the quarterly patch cycle happy

(NT) 3dguru | 07/30/09

RE: Is it time to dump Adobe's Flash player? bradarkin | 07/31/09

Adobe Flash Player 9 & 10 Updates Available ep-man | 08/03/09

Who cares? Tony R. | 08/10/09

Beware of Foxit! macmcf | 08/03/09

Foxit printing is broken pauliusp | 08/05/09

YES and YES jpr75_z | 08/05/09

Yes! Tony R. | 08/10/09

I don't think they "ignored" it for seven months pwoodruff@... | 08/19/09

RE: Is it time to dump Adobe's Flash player? the_fiddler_on_the_roof | 08/24/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now

Blogs From Our Sponsors

Top Rated

Windows 7 vs. Ubuntu 9.10 - Strengths and weaknesses+35 votes
Seven great (and free!) applications for Windows 7+26 votes
"Turkey Day" tech support survival kit+22 votes
Apple nukes Psystar+21 votes
Hardware 2.0 'Very Best Kit List' for Nov/Dec 09+16 votes
Chrome OS - The good, the bad and the ugly, and how it fits in with Windows, Mac and Linux+14 votes
HP Pavilion Elite owner resorts to lawsuit over 'inherently defective' PC+13 votes
Microsoft gives up to 1 million Xbox modders the boot from Live+11 votes

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

ZDNet Blogs

White Papers, Webcasts, and Downloads

Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Key Strategies for Federal Agencies - Safe and Cost Effective Migration for Legacy Hardware GovConnection The federal government has mandated that federal agencies reduce energy ... Download Now

Meet Doc

Here to help you with your Document Management Needs
Check out Doc’s Blog on ZDNet
Help your company, help the earth I want to share with you the Environmental Defense Fund Paper Calculator, which allows you to gauge your organization's environmental impact.
Which is Greener: Paper or Digital? The Answer May Surprise You Anything we can do to reduce paper consumption is good. But what about the impact of digital waste?
Produced by
ZDNet and

Hardware 2.0

Adrian Kingsley-Hughes

July 29th, 2009

UPDATE x1: Is it time to dump Adobe's Flash player?

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Recent Entries

Blogs From Our Sponsors

Top Rated

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Archives

ZDNet Blogs

White Papers, Webcasts, and Downloads

Meet Doc

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads

Hardware 2.0

Adrian Kingsley-Hughes

July 29th, 2009

UPDATE x1: Is it time to dump Adobe's Flash player?

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Recent Entries

Blogs From Our Sponsors

Top Rated

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Keep up with ZDNet

Archives

ZDNet Blogs

White Papers, Webcasts, and Downloads

Meet Doc

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads