The recent hullaballoo over the exploit that opens up Vista through Adobe Flash has the hacking community grinning from metaphorical ear to ear.  The same can’t be said for Adobe, and what’s less of a surprise in the midst of the controversy is that Adobe is now claiming it knew about the exploit all along.

That’s right…according to Arstechnica, Erick Lee of Adobe has come forward saying that Adobe was aware of the flaw before it was exploited, and actually had an update for Flash readied for a release later this month.  Just a short while ago, at PWN 2 OWN, a popular hacking convention, Vista was hacked via a loophole in the Adobe Flash software. 

I think the obvious question here is, if Adobe knew that there was a huge loophole to be exploited through the Flash software, why wasn’t an emergency update released?  It would seem more likely that Adobe is only covering for the rather massive hole in its software that led to the exploitation of Windows Vista — it seems to be one of those cases where someone knows exactly what is going on all along, but just playing it cool for the time being.

Either way, there should be an update to the widely-used format very soon.  In the meantime, Vista is very much Adobe-vulnerable, whether Adobe knew about it before hand or not.  

---

Related:

Adobe updates PostScript driver for Vista

Olympics Silverlight bundling earns criticism

Adobe releases Acrobat 8.1 for Windows Vista and Office 2007

Adobe will not Offer Free Updates to Enable Vista Compatibility

Vista’s ReadyBoost lacks punch

Entry was posted on Sunday, April 6th, 2008 at 11:52 pm under Microsoft, Opinion, Security, Support, Tips, Vista.  Print This Post

Read more entries by Triston McIntyre.