- dotTech - http://dottech.org -

Windows 8 users are vulnerable to exploits due to lack of updates to Flash

Posted By Ashraf On September 8, 2012 @ 11:21 PM In Windows | No Comments

[1]Google Chrome [2] does something unique with Flash [3]. Instead of relying on Flash as a third-party plugin, Chrome has a built-in version of Flash. Google is the one that manages updates for this built-in version of Flash as opposed to Adobe. While it may sound like this would result in a delay in Flash updates for Chrome, Google [4] is actually on the ball and typically releases Chrome Flash updates the same day as Adobe updates Flash. In fact, sometimes Google updates Flash before Adobe.

Microsoft [5] has followed Google’s lead when it comes to Flash in Windows 8; Microsoft has integrated Flash for Internet Explorer 10 [6] with Windows Update as opposed to letting it live as a third-party plugin. In other words, Flash for Internet Explorer 10 in Windows 8 is now updated through Windows Update as opposed to through Flash or Adobe’s website. This means Microsoft is responsible for issuing Flash updates and patches, not Adobe. One would hope that since Microsoft has taken responsibility for patching an extremely exploitable plugin [7], they would do so in a timely manner just like Google. Yeah, well, not so much.

Microsoft has said they will not be issuing patch updates for Windows 8 until the “general availability” of Windows 8, which is when Windows 8 goes on sale in October [8]. That means, and Adobe has confirmed the following, that Windows 8 users as of this moment are vulnerable to existing Flash exploits. According to Symantec, a security firm, there are at least four zero-day unpatched Windows 8 Flash vulnerabilities currently.

For the most part, Windows 8 Flash vulnerabilities at this moment in time won’t affect very many people because Windows 8 is not available to the general public yet. Only people who have received Windows 8 RTM or downloaded the 90-day trial of Windows 8 will be running the operating system. However, just because everyone is not running Windows 8 is not an excuse to not update Flash. Plus, we would hope Microsoft does not do the same thing after Windows 8 is released; that is to say, let’s hope Microsoft doesn’t delay Flash updates for Windows 8 after October.

[via ComputerWorld [9] | Image via marcopako [10]]


Article printed from dotTech: http://dottech.org

URL to article: http://dottech.org/79721/windows-8-users-are-vulnerable-to-exploits-due-to-lack-of-updates-to-flash/

URLs in this post:

[1] Image: http://dottech.org/wp-content/uploads/2012/09/adobe_flash.jpg

[2] Chrome: http://dottech.org/tag/chrome

[3] Flash: http://dottech.org/tag/flash

[4] Google: http://dottech.org/tag/google

[5] Microsoft: http://dottech.org/tag/microsoft

[6] Internet Explorer 10: http://dottech.org/tag/internet-explorer

[7] exploitable plugin: http://dottech.org/tag/flash-bugs

[8] Windows 8 goes on sale in October: http://dottech.org/windows/74775/it-is-official-windows-8-will-be-released-on-october-26-2012/

[9] ComputerWorld: http://www.computerworld.com/s/article/9231076/Adobe_confirms_Windows_8_users_vulnerable_to_active_Flash_exploits

[10] marcopako: http://www.flickr.com/photos/marcopako/2902635744/

© 2008-2012 dotTech.org | All content is the property of its rightful owner.