• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Update QuickTime, Adobe Reader and FireFox if you have them

mechBgon

mechBgon

Super Moderator<br>Elite Member
Here are some updates for widespread software:

  • Apple QuickTime: update to 7.4.1 to fix serious security vulnerabilities that could be used to pwn your system.
  • Adobe Reader: update to 8.1.2, same reason. ***Update*** it turns out the bad guys have been exploiting this vulnerability for weeks. UPDATE NOW.
  • Skype: update here
  • FireFox: download 2.0.0.12 from here or update via the browser itself. Fixes some security glitches and stuff.
  • and to check a Windows rig for what else it might be needing, such as updates for other media players, IMs, utilities and whatnot, Secunia's Personal Software Inspector is just the ticket (free for home users). Its default behavior is to run at boot-up and constantly monitor the system, but both of those behaviors are easily changed in the preferences if you just want to have it around for spot-checks when you want them.
 
Originally posted by: LOUISSSSS
just updates adobe and QT, what were the security vulnerabilities?
Click to expand...

To be general about it, if the bad guys could get your system to run a maliciously-constructed file, they could use that to launch a Trojan on your computer. For example, if mechbgon.com got hacked and they rejigged the site to auto-play their malicious QuickTime file in the web browser, and someone visited my site, they'd probably be attacked. The attack would run with whatever privilege level their browser was using at the time (Administrator or non-Administrator, for Windows users).

For a more in-depth rundown, check out Secunia's bulletins which are found on this page: http://secunia.com/blog/20/
 
First post updated, turns out the Acrobat Reader exploit is pretty serious and has been actively exploited for weeks now.
 
I wonder why the QuickTime 7.4.1 update does not show up in Apple's Software Update applet under Windows. I'm currently running 7.4, and it tells me my software is up-to-date. 😕
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top