navigation bar left navigation bar right

Secunia CSI7
navigation left tab Advisories navigation right tab
navigation left tab Research navigation right tab
navigation left tab Forums navigation right tab
navigation left tab Create Profile navigation right tab
navigation left tab Our Commitment navigation right tab
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: How to patch Flash CS3?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Flash CS3 9.x

This thread has been marked as locked.
mtodorov How to patch Flash CS3?
Member 15th Nov, 2011 11:49
Ranking: 12
Posts: 171
User Since: 20th Mar, 2009
System Score: N/A
Location: HR
Hi,

I have this category 5 security threat:

C:\Program Files\Adobe\Adobe Flash CS3\Flash.exe, version 9.0.115.0.

PSI 1.5 offers me http://download.macromedia.com/pub/flashplayer/upd... download link, and when I download sa_flashplayer_9.exe it is not an self-extract archive but a working binary.

Where should I put this binary? Is it safe to put it on the place of C:\Program Files\Adobe\Adobe Flash CS3\Flash.exe? Will it find it's .DLLs?

Will replacing binary fro Flash.exe be sufficient to patch exploit, or are the vulnerabilities persisting across .DLLs?

Thanks,
mt


--
"If a task is worth doing, it is worth doing right. If it is not worth doing well, it is not worth doing." -- Dr. Jack Hyles
<><

ddmarshall RE: How to patch Flash CS3?
Dedicated Contributor 15th Nov, 2011 15:09
Score: 1219
Posts: 971
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Yes, just overwrite the existing Flash.exe.
There may be additional instructions in the Secunia Troubleshoot report.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+0
-0
mtodorov RE: How to patch Flash CS3?
Member 15th Nov, 2011 19:45
Score: 12
Posts: 171
User Since: 20th Mar 2009
System Score: N/A
Location: HR
Last edited on 15th Nov, 2011 19:46
on 15th Nov, 2011 15:09, ddmarshall wrote:
Yes, just overwrite the existing Flash.exe.
There may be additional instructions in the Secunia Troubleshoot report.


In fact, C:\Program Files\Adobe\Adobe Flash CS3\Players\FlashPlayer.exe needs to be overwritten, not C:\Program Files\Adobe\Adobe Flash CS3\Flash.exe, as stated in @E.Petersen's reply in other thread:

http://secunia.com/community/forum/thread/show/440...

It was exactly you who pointed to that thread in http://secunia.com/community/forum/thread/show/467... so it must have been a lapsus linguae. :-)

All the best,
mt


--
"If a task is worth doing, it is worth doing right. If it is not worth doing well, it is not worth doing." -- Dr. Jack Hyles
<><
Was this reply relevant?
+6
-0

Lilly475

RE: How to patch Flash CS3?
[+]
This reply has been deleted
ddmarshall RE: How to patch Flash CS3?
Dedicated Contributor 16th Nov, 2011 13:25
Score: 1219
Posts: 971
User Since: 8th Nov 2008
System Score: 98%
Location: UK
You're right. Apologies.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+0
-0
mtodorov RE: How to patch Flash CS3?
Member 16th Nov, 2011 13:36
Score: 12
Posts: 171
User Since: 20th Mar 2009
System Score: N/A
Location: HR
on 16th Nov, 2011 13:25, ddmarshall wrote:
You're right. Apologies.


No sweat. I never stopped believing.

Stay well
mt


--
"If a task is worth doing, it is worth doing right. If it is not worth doing well, it is not worth doing." -- Dr. Jack Hyles
<><
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


Secunia is a member of FIRST Secunia is a member of EDUcause Secunia is a member of The Open Group Secunia is a member of FS-ISAC
 
Secunia © 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer
follow Secunia on Facebook follow Secunia on Twitter follow Secunia on LinkedIn follow Secunia on YouTube follow Secunia Xing follow Secunias RSS feed follow Secunia on Google+