Forum Thread: Flash 11.1.102.62 and SA47161: missing Secunia's database update?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Flash Player 11.x

This thread has been marked as locked.
klausus02 Flash 11.1.102.62 and SA47161: missing Secunia's database update?
Member 27th Feb, 2012 18:18
Ranking: 89
Posts: 144
User Since: 4th Feb, 2011
System Score: N/A
Location: DE
Last edited on 27th Feb, 2012 18:20

Hi all,

about 10 days ago I updated Flash Player to vers. 11.1.102.62. Nearly everything is ok with exception of the Secure Browsing tab. Here the Flash Player Plugin is flagged as unsecure conserning SA47161 for IE8 and Firefox 10.1. After completely uninstalling flash player, clearing the registry and deleting all flash player folders I did a clean reinstall of the current official version. But I got the same result.

Then I followed the recomendation made by Maurice in
http://secunia.com/community/forum/thread/show/121...

When using QUALYS BROWSER CHECK it shows Flash Player 11.1.102.62 as up to date in firefox.

Could it be possible that Secunia's database isn't still updated for SA47161? If so, when will it happen?

Thanks
Klaus

Maurice Joyce RE: Flash 11.1.102.62 and SA47161: missing Secunia's database update?
Handling Contributor 27th Feb, 2012 18:49
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Klaus,
SA47161 is currently correct. Despite having Flash version 11.1.102.62 installed it remains vulnerable until Adobe issue a hotfix.

On the PSI Scan Result page it should be showing Flash as PATCHED.

On the Secure Browsing page it should be showing as vulnerable for all browsers awaiting action from Adobe.

Qualy's Browser Checker is really saying the same thing. Being UP TO DATE with all your patching does NOT MEAN IT IS NOT VULNERABLE.

What is does mean is that U as an end user have done all U can to make it secure.

Until Adobe issue a hotfix all U can do is:

1. Uninstall Flash - a bit extreme but an option.

2. Control the use of Flash, for example with IE9 activate the ActiveX filtering option.

Hope this helps.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0
klausus02 RE: Flash 11.1.102.62 and SA47161: missing Secunia's database update?
Member 27th Feb, 2012 19:14
Score: 89
Posts: 144
User Since: 4th Feb 2011
System Score: N/A
Location: DE
Maurice,

thanks for your quick answer. So I will have an eye on Adobe .. :-)

Kaus
Was this reply relevant?
+0
-0
Maurice Joyce RE: Flash 11.1.102.62 and SA47161: missing Secunia's database update?
Handling Contributor 27th Feb, 2012 19:22
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Absolutely - Keep a watch on any Adobe free programmes(Flash/Reader/ShockwaveAIR etc.) & Oracle JAVA.

Sadly they are frequently attacked & left vulnerable.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0

This thread has been marked as locked.