Wednesday, October 8th, 2008...8:16 am...by: Anthony

Adobe Flash Player Clickjacking Vulnerability

Jump to Comments

The recently reported clickjacking vulnerability affecting Adobe Flash Player could also allow a hacker to remotely activate a computer’s microphone and webcam (meaning they could see and hear what you were doing).

clickjacking flash playerThe Adobe Security Blog is reporting that a Flash Player patch should be available by the end of October and until it is released, they are encouraging users to change their browser’s Flash Player settings by following these steps as a temporary workaround:

  1. Access the Flash Player’s Global Privacy Settings panel at the following URL: http://www.adobe.com/support/documentation/en/flashplayer/help/settings_manager02.html
  2. Click “Always deny”
  3. Click ‘Confirm’

Completing those steps will keep the bad guys from remotely accessing your computer’s webcam and microphone - although I am not sure why that ability was even an option in the first place with Flash Player.  Why would someone, good guy or bad, even need the ability to remotely access and control another person’s microphone?

Since YouTube and other online video sites use Flash to display the videos, users that frequent those types of sites could be particularly vulnerable, I would think.

UPDATE: Adobe has released Flash Player 10.0.12.36 which fixes the potential clickjacking issue that still exists in previous versions.  Adobe’s security bulletin recommends downloading and installing the latest version.  If you cannot download it, you should follow the steps above and they hope to have a patch ready in November.

Share and Enjoy:
  • Digg
  • del.icio.us
  • Google
  • Facebook
  • SphereIt
  • Reddit
  • Technorati
  • LinkedIn
  • Netvouz
  • description
  • ThisNext
  • MisterWong
  • Wists
  • BlogMemes
  • Furl
  • NewsVine
  • Slashdot
  • Spurl
  1. Another Adobe Acrobat Reader Vulnerability According to Adobe's Security Advisory site there is another error...
  2. Adobe Reads Our Blog Evidently, someone at Adobe reads our blog. Yesterday, I posted...
  3. Adobe Acrobat Reader Vulnerability According to CNet, an error has been discovered the Adobe...
  4. New Internet Explorer Vulnerability If your Internet Browser of choice is Internet Explorer, make...
  5. New Firefox Vulnerability Reported There has been a vulnerability found in the Firefox web...

If you like what you read, please consider subscribing to our blog by RSS or by e-mail.
It would really help us out.



Here are a Few Related Posts

  1. Another Adobe Acrobat Reader Vulnerability According to Adobe's Security Advisory site there is another error...
  2. Adobe Reads Our Blog Evidently, someone at Adobe reads our blog. Yesterday, I posted...
  3. Adobe Acrobat Reader Vulnerability According to CNet, an error has been discovered the Adobe...
  4. New Internet Explorer Vulnerability If your Internet Browser of choice is Internet Explorer, make...
  5. New Firefox Vulnerability Reported There has been a vulnerability found in the Firefox web...

No Comments

Filed under Browsers, Security

Leave a Reply