Flash Update May Break Certain Applications
Thursday, June 12 2008 - net-security, web-development
At Brainshark we make heavy use of flash in our player and in our application in general. As we progress forward with new features and capabilities that usage will most likely continue to grow. While perusing my RSS feeds this morning I saw this link about Facebook application developers possibly facing broken applications do to a flash security update.
The official Adobe notice is here.
Recently Windows Vista was hacked via a Flash vulnerability lending credence to the fact that Adobe needs to push these types of security updates out even if it means breaking existing code.
The big changes to watch out for:
- You use sockets or XMLSockets, regardless of the domain to which you are connecting
- You use addRequestHeader or URLRequest.requestHeaders in any network API call when sending or loading data cross-domain
- You provide access to content on remote domains as a web service provider
- You have SWFs that are exported for Flash Player 7 (SWF7) or earlier that communicate with the hosting HTML by any means
- You use "BLOCKED SCRIPT" through network APIs to communicate outside a SWF
Check out the official Adobe documents here, which includes remediation steps.
Tags
My Tweets
- Yet Another Reason My Kindle is Getting All My Attention: Otherwise known as: Why are you storing books in your fr... http://bit.ly/a4rl7D
- Want a Table Computer: Everyone wants one right? After all the iPad is going to change everything. The thing is, t... http://bit.ly/ad34sG
- Education is About Knowing How to Teach: What a novel thought. Let’s focus our education efforts on making a bette... http://bit.ly/9jqjsi
- Follow Me on Twitter
Popular Posts
- Using, Close, Dispose and Finalize
- ASP.NET CheckBox Control and CSS
- NHibernate Invalid Index For This SqlParameterCollection
- More Community Server Positions Open
- Ertl Amputation: One Year Later
Summary At some point in your use of .NET you are going find that garbage collection, or rather, the
Previously I wrote about how the ASP.NET Label control <asp:label runat="server" /> renders
I ran into a problem last week where I kept getting this exception: Invalid index 6 for this SqlParameterCollection
I swear Scott and the rest of the group at Telligent really need to stop posting about open positions
It has been an interesting year full of highs and incredible lows . With just a few hours before surgery
