Sandbox added to Flash Player running on Firefox
Posted on 08 May 2012.
Bookmark and Share
As announced by Peleus Uhley, a senior security researcher within its Secure Software Engineering team, Adobe has outfitted the latest (beta) version of Adobe Flash Player with a sandbox.

The so-called Protected Mode, which has already been implemented into Flash Player running on Google Chrome, should prevent the exploitation of Flash vulnerabilities by the hands of attackers.

"Flash Player Protected Mode is a new security enhancement designed to limit the impact of attacks launched from malicious SWF files against Adobe Flash Player when running in Firefox 4.0+ on Windows Vista and higher," saysT Adobe.

"This feature is comparable to the Flash Player Protected Mode in Google Chrome browser, Protected Mode in Adobe Reader, and Office 2010 Protected View."

"Sandboxing technology has proven very effective in protecting users by increasing the cost and complexity of authoring effective exploits. For example, since its launch in November 2010, we have not seen a single successful exploit in the wild against Adobe Reader X," Uhley commented. "We hope to see similar results with the Flash Player sandbox for Firefox once the final version is released later this year."

As a side note, this latest Adobe Flash Player version (beta 3) has also been outfitted with the silent automatic updating feature for Mac.






Spotlight

Attackers use reflection techniques for larger DDoS attacks

Posted on 17 April 2014.  |  Instead of using a network of zombie computers, newer DDoS toolkits abuse Internet protocols that are available on open or vulnerable servers and devices. This approach can lead to the Internet becoming a ready-to-use botnet for malicious actors.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Apr 18th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //