Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Adobe: Flash, Air, Acrobat, Reader

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

This thread has been marked as resolved.
taffy078 Adobe: Flash, Air, Acrobat, Reader
Contributor 12th Aug, 2010 09:15
Ranking: 408
Posts: 1,335
User Since: 26th Feb, 2009
System Score: 100%
Location: UK
Issue: Having installed the MS patches yesterday on my desktop (XP) and laptop (Win7), I ran the secunia scan and got conflicting results.

Flash & Air on my XP was OK but the same programs on my Win7 werenot.

Several friends who I'd recommended to Secunia told me that they had the same results.

Having slept on it, I scanned my XP again just now, and those programs have been picked up as vulnerable.

Cause: I'd installed the MS stuff on my XP (& scanned it) a few hours before doing the same on my laptop and it's now clear that the Adobe patches were released during this gap.

Moral: if you've more than one PC, update & scan them around the same time!Probably something that advanced users are aware of but perhaps this may help users at my level.

PS One of the Adobe fixes was to fix something that they failed to fix in a recent patch! They're releasing criticals for Reader & Acrobat next week so will it be "here we go again"?

--
taffy078, West Yorkshire, UK

Desktop: Compaq Presario (OEM) 32 bit / AMD Athlon / 2 GB RAM
XP Home - SP3/ IE8/ Norton IS - Secunia PSI v2.0.0.3003

Laptop: Win 7 / IE11 / PSI v2.0.0.3003

Post "RE: Adobe: Flash, Air, Acrobat, Reader" has been selected as an answer.
This user no longer exists RE: Adobe: Flash, Air, Acrobat, Reader
Member 12th Aug, 2010 09:28
Hi Taffy,

There should be no need to scan your machines at the same time. Your scan results are always based on the versions of actual files. The Adobe Updates should allow you to simply install the patches, getting to the most recent version.

For the Microsoft Patches, this will be worth trying:

1) Install all available patches from Microsoft Update (click the solution button in the PSI)
2) Reboot
3) If any patches were installed, check Microsoft update again.
4) If any patches was installed this time, restart from step 2.
5) Rescan with the PSI

hope this helps.
Was this reply relevant?
+0
-0
taffy078 RE: Adobe: Flash, Air, Acrobat, Reader
Contributor 12th Aug, 2010 10:33
Score: 408
Posts: 1,335
User Since: 26th Feb 2009
System Score: 100%
Location: UK
Last edited on 12th Aug, 2010 10:38
Thanks for that tip, Emil.

Another point is that
(1) had I only one PC
(2) and a different version of PSI **

I would not have known that there was a problem with Flash & Air until my next scan a week later.

** This is why PSI v1.9.0.2, the TP version with its Auto-Update function, is so vital for members, imho.

PS This is an interesting comment on Flash software

http://secunia.com/blog/116

--
taffy078, West Yorkshire, UK

Desktop: Compaq Presario (OEM) 32 bit / AMD Athlon / 2 GB RAM
XP Home - SP3/ IE8/ Norton IS - Secunia PSI v2.0.0.3003

Laptop: Win 7 / IE11 / PSI v2.0.0.3003
Was this reply relevant?
+0
-0
Anthony Wells RE: Adobe: Flash, Air, Acrobat, Reader
Expert Contributor 12th Aug, 2010 15:11
Score: 2445
Posts: 3,332
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 12th Aug, 2010 15:14
Hello taffy ,

When logged in you can go to "My Profile" on this page and select "Edit my Profile" and select "Software Inspector Reminder" under "Subscriptions" . This way you get an Email update for rule changes in the major programmes covered by the OSI (you may not have them all on your machine , but the email usually gives you a clue) - it beat the PSI in a Flash yesterday :))

Like I have said elsewhere , if one (and especially newbies) get used to opening the PSI EVERYDAY and looking in the "secure browsing" tab (noting/ignoring the display bug in version 1.9.0.2) one should/will pick up the very important things like Flash within 24 hours at the most !! Depending on your browsing habits , that timing might be critical .

In my opinion (unasked for) , I think that leaving it up to a "weekly" scan by the PSI to do all the work for you is "slack" practice and not "secure browsing" practice ; you need to take your own responsibility :))

Take care

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+2
-0
taffy078 RE: Adobe: Flash, Air, Acrobat, Reader
Contributor 12th Aug, 2010 15:58
Score: 408
Posts: 1,335
User Since: 26th Feb 2009
System Score: 100%
Location: UK
Last edited on 12th Aug, 2010 16:04
on 12th Aug, 2010 15:11, Anthony Wells wrote:
In my opinion (unasked for) , I think that leaving it up to a "weekly" scan by the PSI to do all the work for you is "slack" practice and not "secure browsing" practice ; you need to take your own responsibility :))

Take care

Anthony


Thanks for the tip about the OSI email updates, Anthony. I wasn't aware of that so I've just checked that box! ;0)

I usually do check the tabs as soon as I log in. Yesterday though was different, because of all the Microsoft updates.

What you say though is good advice, especially for new members - if ever the PSI forum has a sticky for them, your advice should be included!

EDIT: PS I've passed on both tips to my friends.

--
taffy078, West Yorkshire, UK

Desktop: Compaq Presario (OEM) 32 bit / AMD Athlon / 2 GB RAM
XP Home - SP3/ IE8/ Norton IS - Secunia PSI v2.0.0.3003

Laptop: Win 7 / IE11 / PSI v2.0.0.3003
Was this reply relevant?
+0
-0
Anthony Wells RE: Adobe: Flash, Air, Acrobat, Reader
Expert Contributor 12th Aug, 2010 17:02
Score: 2445
Posts: 3,332
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 12th Aug, 2010 17:03
Keep spreading the good word , soldier :-0)))

I really hate the term "newbie" rather than new member or IT newcomer - too late to edit :(((

Ditto 'sub-forum" , but what else can one use .

Ditto being called a "teccie" (that's two hates actually - the term and me included therein) ; I quite like being a "non-techie" when I'm in a mood to annoy :))

Everybody has experience - luckily I have a good memory and can relate reasonably accurately what I am told by those who know (provided it actually works) - so back to your job , soldier . Get 'em in line !! :)))

And for heaven's sake , take care .

Anthony

PS : Don't think it's in my nature to be a "post it ".

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability