Three pieces of Flash 0day vulnerability exposure, Flash again the emergency update-bug warning-the black bar safety net

2015-07-15T00:00:00
ID MYHACK58:62201564687
Type myhack58
Reporter 佚名
Modified 2015-07-15T00:00:00

Description

Firefox developers in the latest version of the Firefox browser in the Flash Player Plug-In included in the shield list, which means that on the website all Flash content will be disabled and the user had to manually open the Flash. Adobe today released the latest 1 8. 0. 0. 2 0 9 version, has been fixed at present all the three gold 0day for. The vulnerability of the king: Adobe Flash In a recent fiery HT“nuclear leak”, the Flash encounters Frequent shots. Breath broke three 0day, respectively, is CVE-2 0 1 5-5 1 1 9, CVE-2 0 1 5-5 1 2 2, CVE-2 0 1 5-5 1 2 3, and surprised each browser, FireFox immediately issued a Bulletin announcing the default to disable the Flash plug-in. Disable after some upload function or preview function the user can not use, there is also the unknown truth of users have experienced repeatedly uninstall and reinstall after the issues are not resolved, only with a“crash”to describe the word. HT“contribution”to the third push-0day FreeBuf covered in detail before the two vulnerabilities, the first of the three CVE-2 0 1 5-5 1 2 3 the same is from the HT previously leaked information, the Trend Micro team found that the vulnerability“could cause a crash and potentially allow an attacker to control an affected system.” CVE-2 0 1 5-5 1 1 9 in Flash 18.0.0.203 version has been fixed, CVE-2 0 1 5-5 1 2 2 and the CVE-2 0 1 5-5 1 2 3 impact of all theoperating systemon the Flash including 1 8. 0. 0. 2 0 3 version. Adobe today released the latest 1 8. 0. 0. 2 0 9 version, has been fixed now all three gold 0day for. Flash old men, still capable of rice no? From vulnerability released Adobe hesitation after a few days, Mozilla drastic prohibition of FireFox for all users of the Flash plug-in. “Currently all versions of the Adobe Flash plug-in is vulnerable”, which is the FireFox display of information, which in turn is a few days Adobe's reputation suffered another hit hard. ! When the user frequently to update the Flash more and more complain about, perhaps the HTML5 era is more and more near. On the previous day, the Facebook chief Security Officer Alex Stamos on Twitter says: “Adobe is the time to plan to stop and kill the Flash, and Mozilla has Flash this most popular development joined the blacklist.” ! As Joe master during his lifetime, the proposed point: Adobe is the time to stop providing Flash software. “We have first-hand evidence that, Flash is led Mac PC crash the biggest reason. Because we are always on the with Adobe to cooperate to solve these problems, but they in the past few years have been very stubborn.” This year 2 month, the world's largest video site YouTube default to using HTML5 video player to replace the original Flash. But in the crowd mouthing Flash, Adobe lecturer Paul Burnett was that Flash of the future in the web game, and that the company will not abandon this technology. Besides, the Flash eventually when toward want to go where, small series or suggest that you speed speed update, after all safety first. Update link