2012/09/10

Windows 8: the Built-in Flash Player Leads to Zero-day Attack

What’s the Operation System your computer runs now? Win XP, Vista, Win 7 or probably Windows 8? Microsoft’s every step is accompanied with great influences and changes. Although Windows 8 won’t be officially released until October 26th, RTM version has been applied by some enterprises to the daily work.
Windows 8 and Flash Player
This time, Microsoft adds Adobe Flash Player to its IE10 browser as a default component rather than a third party plugin. One of the reasons for Windows 8 still contains the built-in Adobe flash player is that HTML seems not so stable in the market for the moment, since flash player gave up the Android mobile market.But the built-in touch-friendly adobe flash player in browser IE10 can only get upgrades delivered by Microsoft. On August 21st, Adobe has launched updates for 0-day attack, but still leaving the early users in danger of 0-day as the Firefox being patched while embedded version in Internet Explorer not.

"If you're using Internet Explorer 10 on any version of Windows 8, including the RTM bits available via MSDN or TechNet and the enterprise preview, you are at risk." warned Ed Bott on ZDNet. Right now, Operation Systems such as Windows7, Vista, XP, Linux, etc. can get patched through security updates.
Windows 8
Lessons drawn from Apple’s previous mistakes when built-in Java in Mac devices’ failing in updates bringing up the crazy spread of Flashback virus, should be a warning for Adobe and Microsoft’s Win 8. It is said that a security update will come through Windows Update in the GA timeframe- the target date of October 26 when Windows 8 will go on sale.

Before the problem being solved, users could pick Chrome, Firefox etc. as alternatives. Or disable the built-in Flash Player temporarily.Will flash lives in IE 10 of Windows 8?

No comments:

Post a Comment