| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 19 Sep 2012 02:54:23 +0100 From: Nick Boyce <nick.boyce@...il.com> To: FunSec List <funsec@...uxbox.org>, Full Disclosure <full-disclosure@...ts.grok.org.uk>, BugTraq <bugtraq@...urityfocus.com> Subject: Re: Adobe Flash UpdateInstalls Other Warez without Consent On Mon, Sep 17, 2012 at 6:39 PM, Christian Sciberras <uuf6429@...il.com> wrote: > >> On Thu, Sep 6, 2012 at 2:09 PM, Jeffrey Walton <noloader@...il.com> >> wrote: [snip] >> > Adobe now includes additional warez in their updates without consent. >> > The warez includes a browser and tools bar. The attached image is what >> > I got when I agreed to update Adobe Flash because of recent security >> > vulnerability fixes. > > To the more reasonable readers, I guess Adobe could have had a genuine > mistake / bug in their code....nothing new. This has happened elsewhere recently - specifically with the once rather fine Foxit PDF Reader - see this forum post : http://forums.foxitsoftware.com/showthread.php?18193-Auto-updade-silently-installs-extra-software-overrides-user-choices (12th.June.2012) Foxit Corporation apologised within a week for the snafu, confessing a misconfiguration of their upgrade servers. > Don't know why it's such a big deal. I tend to agree, given Adobe's stunning competence record with this particular product :) Nick -- Any sufficiently advanced malice is indistinguishable from incompetence. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists