M
Malicious camera spying using ClickJacking
Update: Adobe has fixed this issue by framebusting the Settings Manager pages. Now, 99.9% of the users are protected from this specific exploit. Congrats on…
HomePage 5 of 10
All Posts — Page 5
Thanx for not killing the Flash clipboard
Recently, a questionable Flash feature of writing to the user’s clipboard has been exploited. Adobe will finally fix this feature and it’ll require user…
Encapsulating CSRF attacks inside massively distributed Flash movies - Real world example
Update: Added a sterilized demo and the source code. CSRF (Cross Site Request Forgery) is considered one of the most widely spread exploits in websites today.…
Bug in Internet Explorer security model when embedding Flash
Update: I’ve posted a real world example of this bug being exploited. This one has the same behavior on IE6, IE7 and IE8 betas. I have only tested this with…
Police brutality against Flash
Update: You need to check the website to see what I’m talking about The police (not the band) in general is a problematic institute. Giving average (and below)…
Reliving your childhood through every browser
This is what fMAME is all about, it’s a MAME (Arcade Games Emulator) written in Flash that is running in every browser with no installation. I get enthusiastic…
M
Mysteries Flash exploit is hijacking the clipboard?
Update: Adobe Product Security Incident Response Team (PSIRT) has referred to this “Clipboard attack” Update 2: Aviv Raff has updated me about the fact that it…
A
Adobe to incorporate Voice-to-Text capabilities into Flash Video. SEO Video?
Update: via The Universal Desktop, it’s getting closer. Before you’ll get too enthusiastic, it’s not like the next Flash Player will get a real-time…
A
Adobe fight fire with fire
Recently Adobe has been needing to deal with a massive force attacking its main domain of dominance, we can call this domain – the highly interactive web or…
M
My blog has been hacked
The first part of an hacker’s job would be to gather some information about her target, server, technology and software that runs on the desired target. With…
X
XP SP3 downgrade the Flash Player
Update:Apparently SP3 doesn’t downgrade the player. It’ll only install an older version 9.0.115 if you don’t have the latest 9.0.124 already installed,…
D
Dodo - My favorite April Fool
A new application from Aviary, Dodo, the web-based time machine: