Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Adobe Flash Player 10.x

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Flash Player 10.x

This thread has been marked as locked.
Janon22 Adobe Flash Player 10.x
Member 9th Nov, 2010 15:58
Ranking: 0
Posts: 3
User Since: 9th Nov, 2010
System Score: N/A
Location: CI
Good afternoon
I have a problem with my computer. My score is 98 % with one Insecure which is : Adobe Flash Player 10.x

There are 2 adode Flash Player 10.x in my device. First is insecure adobe flash and the second is correct. How to delete the first without problem.
Excuse me for my bad english. Thank you



--
Win XP SP3 IE8 et Google Chrome 3.6 Ram 2 Go

Maurice Joyce RE: Adobe Flash Player 10.x
Handling Contributor 9th Nov, 2010 18:08
Score: 11744
Posts: 9,000
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Perhaps best if U do a clean install. Just follow all the steps given below:

Uninstall Flash using the clearly marked (4/11/2010) uninstaller here:

http://kb2.adobe.com/cps/141/tn_14157.html SAVE IT TO DESKTOP

Before using the uninstaller FULLY EXIT all these:

a. All Browsers.
b. Windows Messenger.
c. Incredimail.
d. Adobe Free Reader.
e. PSI[/b]

1. Download & SAVE these to desktop.
http://fpdownload.adobe.com/get/flashplayer/curren...

& then here if U have any Gecko based (Firefox etc) browsers.

http://fpdownload.adobe.com/get/flashplayer/curren...

2. The installer will appear on the desk top. THE IMPORTANT BIT - Before agreeing to install check these programmes are completely shut down (use the Task Manager if necessary to COMPLETELY EXIT the running process):
a. All Browsers.
b. Windows Messenger.
c. Incredimail.
d. Adobe Free Reader.
e. PSI


3. The new install will then remove all old files during the update process.
4. Complete a PSI rescan & all should be in order.
5. Delete the Flash installer file from the desktop.


--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+2
-0
Janon2 RE: Adobe Flash Player 10.x
Member 10th Nov, 2010 00:06
Score: 0
Posts: 1
User Since: 9th Nov 2010
System Score: 99%
Location: CI
Good evening
Thank you to you Joyce
I could solve my problem thanks to your explanations. But I have Adobe Reader 9.4 which has a vulnérablité which has yet no solution. Is what I can replace it with Adobe Reader 8 without risk of vulnerability.
Once again thank you to you.


--
Win XP SP3 IE8 Dual Core
Was this reply relevant?
+0
-0
Maurice Joyce RE: Adobe Flash Player 10.x
Handling Contributor 10th Nov, 2010 00:39
Score: 11744
Posts: 9,000
User Since: 4th Jan 2009
System Score: N/A
Location: UK
U might wish to read this and select a new Reader?

http://secunia.com/community/forum/thread/show/417...

--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+1
-0
Amaxe RE: Adobe Flash Player 10.x
Member 11th Nov, 2010 16:58
Score: -3
Posts: 7
User Since: 28th Dec 2009
System Score: N/A
Location: N/A
I've closed out of everything and run the uninstall program, then used the Secunia Wizard to install the new version. Then told it to rescan the program. Secunia still tells me it is insecure.

Does Secunia send you to the wrong patch or something or is this just a false positive?
Was this reply relevant?
+0
-0
Amaxe RE: Adobe Flash Player 10.x
Member 11th Nov, 2010 17:20
Score: -3
Posts: 7
User Since: 28th Dec 2009
System Score: N/A
Location: N/A
I think this may be a false Positive. Secunia identifies me as having 10.1.85.3 but I installed 10.1.102.66
Was this reply relevant?
+0
-0
Maurice Joyce RE: Adobe Flash Player 10.x
Handling Contributor 11th Nov, 2010 18:25
Score: 11744
Posts: 9,000
User Since: 4th Jan 2009
System Score: N/A
Location: UK
It is not a false positive.
REMOVE OLD ADOBE (FORMERLY MACROMEDIA) OCX FILES.

If Flash was running when an update was attempted it will not remove all of the old (and vulnerable) files.

To remove these files:

COMPLETELY EXIT (using Task Manager if necessary):

a. All Browsers.
b. Windows Messenger.
c. Incredimail
d. All Adobe products
e. PSI unless using Version 2 BETA.

Now navigate to here:

32 Bit Systems - C:\Windows\system32\Macromed\Flash

64 Bit Systems - C:\Windows\sysWOW64\Macromed\Flash

In these locations U may well find these entries:
FLASH10K or other extensions.OCX - Right click & delete it/them.

FLASH10L.OCX - The latest version (10.1.102.64) which should be retained.

Empty the Recycle Bin (or remove any Flash items from the bin) complete a full PSI rescan & all will be in order.

Update 2 23:11 07/11/2010



--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+2
-0
Janon22 RE: Adobe Flash Player 10.x
Member 11th Nov, 2010 18:59
Score: 0
Posts: 3
User Since: 9th Nov 2010
System Score: N/A
Location: CI
Goodnight Joyce
I wonder if the fact to navigate with google chrome IE8 but leaving my computer always makes me vulnerable. Should I uninstall IE8 imperative?
Thank you in advance

--
Win XP SP3 IE8 et Google Chrome 3.6 Ram 2 Go
Was this reply relevant?
+0
-0
Maurice Joyce RE: Adobe Flash Player 10.x
Handling Contributor 11th Nov, 2010 19:09
Score: 11744
Posts: 9,000
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Last edited on 11th Nov, 2010 19:12
If U try to uninstall IE 8 it will roll back to IE7. Not ideal.

As U are aware there is a vulnerability with IE8. Just be extra careful when surfing & U will be OK.

I think U have another browser? - if so use that where possible until IE8 is patched.







--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+2
-0
Janon22 RE: Adobe Flash Player 10.x
Member 12th Nov, 2010 16:44
Score: 0
Posts: 3
User Since: 9th Nov 2010
System Score: N/A
Location: CI
Goodnight Joyce
I think I'll keep using google chrome IE8 until corrected. Thank you for the advice.


--
Win XP SP3 IE8 et Google Chrome 3.6 Ram 2 Go
Was this reply relevant?
+0
-0
Amaxe RE: Adobe Flash Player 10.x
Member 12th Nov, 2010 16:51
Score: -3
Posts: 7
User Since: 28th Dec 2009
System Score: N/A
Location: N/A
Yeah. Turns out the uninstaller wouldn't remove the OCX even when other programs were closed out and it wouldn't let me delete it manually either. At least it let me rename it as ocx.old so I was able to fix it anyway.

I guess I've learned the uninstaller isn't as good as it ought to be.
Was this reply relevant?
+0
-0
TiMow RE: Adobe Flash Player 10.x
Dedicated Contributor 12th Nov, 2010 18:26
Score: 737
Posts: 728
User Since: 26th Jun 2009
System Score: N/A
Location: CH
@Amaxe

Like you, I always used to run the uninstaller prior to updating flash - having first fully exited all flash dependant programs (including PSI 1.5.0.2, from tray icon).

However, with the last 2 updates, it hasn't been necessary - the update has removed/overwritten the old .ocx file.

The last but one update, I used filehippo download; and the last one I used the links provided by PSI Download Solution (as the new updates weren't available from filehippo at the time).

With the last update the PSI tray icon pop-up bubble (PSI 1.5.0.2), even recognised the change for ActiveX, without re-boot or re-scan.

When I double checked the file location, I only had the latest Flash 10l.ocx file, present.

TiMow

--
Computing is not yet a perfect science - it still requires humans.
Was this reply relevant?
+1
-1
Amaxe RE: Adobe Flash Player 10.x
Member 12th Nov, 2010 18:33
Score: -3
Posts: 7
User Since: 28th Dec 2009
System Score: N/A
Location: N/A
How odd. It seems to be very balky for me refusing to overwrite.

Meh, it's probably an example of PEBKAC rather than Adobe.
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer