Comments on: Exploited bug doesn't exist in latest version of Flash

Despite earlier reports, version 9.0.124.0 of Adobe Flash Player has no new bugs.

[Lerianis]

Well, you should ALWAYS keep up to date with the latest versions of the software on your computer...... some things, like the Flash Player, should have an 'automatic update' thing where it runs on the start of your computer or when you first open a Flash file, searches for an update, and pops up a message if there is one.

[hnielsenatcbs]

Agree - Flash Player should have an auto update feature, just like Firefox and many others.
But there are alternatives - programs that watch your installed software for updates. CNET's VersionTracker is fine, but not free. FileHippo (www.filehippo.com) has a free alternative. Not as comprehensive as VersionTracker, but it does check your Flash, both the ActiveX and the "normal" (Firefox) version, and offer direct download links to the new versions. And it's easy to set it to start at boot-time.

[mhinnewyork]

Flash does have an auto-update feature but I have no idea how it works and it hasn't been very useful in my experience. That is, every time Flash needs to be updated I learn about it another way, not from Flash itself.

[dbjohnson2]

I recommend the Secunia.com website.

You can run the online scanner which checks to see whether the typical suspect programs are up-to-date. One nice feature is it tells you where to obtain the update and where the obsolete version is installed on your PC.

But the feature I probably like best is that you can sign up to receive an email alert whenever there is a security update to the typical programs. This enables you to turn off many programs which run in the background on your PC checking for updates. Less non-required stuff running the better in my opinion.

And, no, I have no financial interest in Secunia.

Doug

[mhinnewyork]

I agree that the Secunia online scanner is a great thing and I've recommended here on this blog multiple times. That said, it is limited in the programs it supports and it does not tell you of known buggy software for which there is, as yet, no bug fix. Still, it's a great thing. Michael Horowitz

[i_made_this]

Agreed, the on-line Secunia Software Inspector is excellent. It actually proved something subtle to me about Adobe Flash - it doesn't matter if you keep up with extremely critical Flash patches / updates, so long as you continue using certain Instant Messengers and gaming programs that refuse to update Flash on their servers. The corrupt and outdated Flash code these providers insist on inflicting on your system doesn't mean you should stop being timely about your Flash updates. It just means that you should pause to consider why certain Instant Messengers in particular would choose not to be timely. What benefit do they gain by feeding your client with their servers' extremely critical and corrupt code? The answer is more than a little frightening.

[mhinnewyork]

I agree completely. A full scan with the online Secunia Inspector can be frightening in the old buggy stuff it uncovers. But, it's an important part of Defensive Computing. Michael Horowitz