Archive for January 2010

XP Users are Recommended to Upgrade Flash Player

According to foreign media reports, Microsoft has urged its Windows XP users to upgrade the pre-loaded Adobe Flash Player 6.0 due to multiple security flaws on Tuesday.

Microsoft has released the #979267 safety proposal to urge its users either upgrade to the latest version of Flash Player or unload the old one due to several security flaws found in the early 6.0 version.

It’s very rare that Microsoft would propose safety advice for third-party products. It does so because the Adobe Flash Player 6.0 is pre-loaded in Microsoft Windows XP and it’s necessary to remind users that Adobe had stopped supporting Flash Player 6.0 since 2006. The latest version of Flash Player is 10.0.42.34.

Microsoft’s purpose is very clear, they hope the users understand that the security flaw only occurs when the old version of flash player and old Windows are used at the same time, because the new Windows are without built-in Flash Player yet.

Microsoft said: “Adobe Flash Player 6.0 is provided at the same time with Windows XP, it contains several security flaws that may execute remote control code when browsing some specially-made webpages. Adobe has fixed those vulnerabilities in the latest Flash Player. Microsoft strongly recommends to upgrade to the latest Flash Player for those who is still using the old version of Windows XP and Adobe Flash Player 6.0.”. Nevertheless, Microsoft indicates that there is no attack found so far related to those security flaws.

This security proposal is released for Adobe Flash Player 6.0 and together with other security vulnerabilities on Tuesday. The service pack this time will affect all the Windows system, but only the Windows 2000 is catalogued to “Critical” level while other subsequent versions of Windows are put to “Low”, so the Flash issue is more important and with higher priority.