Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: How to patch Flash CS3?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Flash CS3 9.x

This thread has been marked as locked.
mtodorov How to patch Flash CS3?
Member 15th Nov, 2011 11:49
Ranking: 12
Posts: 166
User Since: 20th Mar, 2009
System Score: N/A
Location: HR
Hi,

I have this category 5 security threat:

C:\Program Files\Adobe\Adobe Flash CS3\Flash.exe, version 9.0.115.0.

PSI 1.5 offers me http://download.macromedia.com/pub/flashplayer/upd... download link, and when I download sa_flashplayer_9.exe it is not an self-extract archive but a working binary.

Where should I put this binary? Is it safe to put it on the place of C:\Program Files\Adobe\Adobe Flash CS3\Flash.exe? Will it find it's .DLLs?

Will replacing binary fro Flash.exe be sufficient to patch exploit, or are the vulnerabilities persisting across .DLLs?

Thanks,
mt


--
"If a task is worth doing, it is worth doing right. If it is not worth doing well, it is not worth doing." -- Dr. Jack Hyles
<><

ddmarshall RE: How to patch Flash CS3?
Dedicated Contributor 15th Nov, 2011 15:09
Score: 1198
Posts: 954
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Yes, just overwrite the existing Flash.exe.
There may be additional instructions in the Secunia Troubleshoot report.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+0
-0
mtodorov RE: How to patch Flash CS3?
Member 15th Nov, 2011 19:45
Score: 12
Posts: 166
User Since: 20th Mar 2009
System Score: N/A
Location: HR
Last edited on 15th Nov, 2011 19:46
on 15th Nov, 2011 15:09, ddmarshall wrote:
Yes, just overwrite the existing Flash.exe.
There may be additional instructions in the Secunia Troubleshoot report.


In fact, C:\Program Files\Adobe\Adobe Flash CS3\Players\FlashPlayer.exe needs to be overwritten, not C:\Program Files\Adobe\Adobe Flash CS3\Flash.exe, as stated in @E.Petersen's reply in other thread:

http://secunia.com/community/forum/thread/show/440...

It was exactly you who pointed to that thread in http://secunia.com/community/forum/thread/show/467... so it must have been a lapsus linguae. :-)

All the best,
mt


--
"If a task is worth doing, it is worth doing right. If it is not worth doing well, it is not worth doing." -- Dr. Jack Hyles
<><
Was this reply relevant?
+6
-0

Lilly475

RE: How to patch Flash CS3?
[+]
This reply has been deleted
ddmarshall RE: How to patch Flash CS3?
Dedicated Contributor 16th Nov, 2011 13:25
Score: 1198
Posts: 954
User Since: 8th Nov 2008
System Score: 98%
Location: UK
You're right. Apologies.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+0
-0
mtodorov RE: How to patch Flash CS3?
Member 16th Nov, 2011 13:36
Score: 12
Posts: 166
User Since: 20th Mar 2009
System Score: N/A
Location: HR
on 16th Nov, 2011 13:25, ddmarshall wrote:
You're right. Apologies.


No sweat. I never stopped believing.

Stay well
mt


--
"If a task is worth doing, it is worth doing right. If it is not worth doing well, it is not worth doing." -- Dr. Jack Hyles
<><
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability