Avatar for Username

Sykje yn Support

Mij stipescams. Wy sille jo nea freegje in telefoannûmer te beljen, der in sms nei ta te stjoeren of persoanlike gegevens te dielen. Meld fertochte aktiviteit mei de opsje ‘Misbrûk melde’.

Learn More

Dizze konversaasje is argivearre. Stel in nije fraach as jo help nedich hawwe.

Using 35.01 Updated flash to 16.0.0.296 and still says vulnerable

  • 4 antwurd
  • 10 hawwe dit probleem
  • 13 werjeftes
  • Lêste antwurd fan James

UKTricky
UKTricky
more options

Have updated Firefox to 35.01, Checked add-ons, Firefox plugin check & updates said its vulnerable. Went through normal flash update procedure directly from Firefox link on the plugin check & updates. Installed update. Rebooted Plugin check & updates still says vulnerable. Checked Adobe website page, "You have version 16,0,0,296 installed" and it works fine. This is the latest version (as of 11.38 GMT 03-02-2015).

This issue has been previously raised, but people have been fobbed off with issues surrounding latest FF update and previous Flash updates which happened close to each other.

Any ideas ?

Adobe thinks its ok, so this must be a 35.01 issue or other FF compatibility issue.

Have updated Firefox to 35.01, Checked add-ons, Firefox plugin check & updates said its vulnerable. Went through normal flash update procedure directly from Firefox link on the plugin check & updates. Installed update. Rebooted Plugin check & updates still says vulnerable. Checked Adobe website page, "You have version 16,0,0,296 installed" and it works fine. This is the latest version (as of 11.38 GMT 03-02-2015). This issue has been previously raised, but people have been fobbed off with issues surrounding latest FF update and previous Flash updates which happened close to each other. Any ideas ? Adobe thinks its ok, so this must be a 35.01 issue or other FF compatibility issue.

Alle antwurden (4)

philipp
philipp
  • Moderator
more options

hello UKTricky, unforunatley the result of the plugin-check page is correct, there has been yet another vulnerability found in adobe flash player 16.0.0.296 which is already exploited in the wild. see the security advisory: https://helpx.adobe.com/security/products/flash-player/apsa15-02.html

there is no fix for it released by adobe yet and the update button on the plugin check site will lead nowhere at the moment - so it's best to set the shockwave flash plugin to ask-to-activate in the firefox addons > plugins panel!

Axis
Axis
more options

philipp is right. What I did was set to "never activate." Then I don't get as many nag screens. Why I post this is that I found that almost all embedded content, and YouTube, all played just fine without Flash.

That was a huge discovery for me! Hopefully Adobe Flash will get it's act together soon. What they're losing is a lot of advertising revenue and that is probably making many commercial websites that rely on advertising revenue to support themselves really upset...then again, I don't really mind temporarily not getting the advertisements.

Regards, Axis

James
James
  • Top 25 Contributor
  • Moderator
more options

This is not a Firefox 35.0.1 or any other Firefox version issue in other words.

James
James
  • Top 25 Contributor
  • Moderator
more options

https://www.adobe.com/products/flashplayer/distribution3.html

Flash player 16.0.0.305, 13.0.0.269 esr and the 11.2.202.442 for Linux is now available for download.

https://helpx.adobe.com/security/products/flash-player/apsb15-04.html