Security Risks from unpatched media players...Are you at Risk?

Geekgirl · 08-19-2007, 10:05 AM

Are you facing security risks, not from flaws in Windows itself but from unpatched media players?

If you are running versions of Flash, Java, and QuickTime that are unpatched you could be at risk

Tests have shown which applications are the most likely to be installed but unpatched on users' PCs.
In the following list, number 1 represents the unpatched application that was found on the greatest number of users' machines, with higher numbers representing fewer machines:

1. Adobe Flash Player 9.x
2. Sun Java JRE 1.6.x/6.x
3. Macromedia Flash Player 6.x
4. Macromedia Flash Player 8.x
5. Macromedia Flash Player 7.x
6. Apple QuickTime 7.x
7. Macromedia Flash Player 5.x
8. Mozilla Firefox 2.0.x
9. Macromedia Flash Player 4.x
10. Adobe Reader 7.x

These applications are media players, browser plug-ins that play media files, or a browser itself (i.e., Firefox). All of these programs can be attacked across the Internet for example, if you play an infected Flash video you find on a Web site or that you received via e-mail. Consequently, using an older version of these program poses a real security risk.

All of the applications mentioned above support automatic updating. They also allow you to choose to update them manually which some users prefer. If you prefer to update manually, update them on your regulary scheduled malware scan schedule.

Now your probably wondering, how can I tell if my software is out-of-date? Good question, and here is a program to tell you just that

You can use Software Inspector at Secunia.com.....its free
This online utility requires Java to run, so you should use the Java update procedure below to make sure you have the latest version of Java before proceeding.

To update Sun Java:

Step 1. In the Control Panel, launch the Java applet. You can also right-click the Java icon in the Taskbar tray and choose Open Control Panel.

Step 2. Click the Update tab. Use the controls there to customize the update notification. Click OK.

If you prefer to update Java manually, uncheck the box for automatic updating. Then return to this dialog box periodically and click Update Now at the bottom of the Update tab.

Now, Test your software with Software Inspector

The scan will find software (including the operating system) with known security flaws for which patches exist. The on-screen report lists your updated apps (with a green checkmark) and nonupdated apps (with a red X). If you have multiple copies of a single application installed, the report will list each version. Click the "+" icon to the left of each item for more information, including the specific path to each file.

Software Inspector does not flag applications for which no update exists. Unfortunately, you may still have applications with security holes that aren't mentioned in the report. In addition, the program can't detect any workarounds you may have put in place to avoid security problems with existing applications.

If the scan finds multiple versions of software, sometimes older versions represent a security risk to your system. But in some cases (such as Java), you may need an older version to keep other application software running properly.

Before doing anything, make a backup of your system, or at least create a restore point using System Restore.

Secunia's Software Inspector is especially valuable for those of us who prefer to use manual updating, rather than letting programs check and download patches automatically. The scan not only tells you what updates to look for, but it checks all your software in a single step without having to use each application's update feature one at a time.

You may forget to use Software Inspector periodically, so to automate that chore, click the reminder service link on the Software Inspector page. This will send you an e-mail notification every time a new update or version is available.

It's frustrating to know that, even when Windows is fully patched, our application software can represent an even greater vulnerability. To reduce your risk, consider running Software Inspector once a month, just after you've installed the Windows patches that Microsoft typically releases on Patch Tuesday (the 2nd Tuesday of the month).

**Done_Fishin** · 08-19-2007, 11:03 AM

Thanks GG
A very helpful thread & site .. I had a PC where the auto updates were turned off .. that site and link allowed me to see that and get it back up to date , update wise.

very useful .. seems like I will be checking out that site more often .. or until they start asking me to pay

**Glaswegian** · 08-19-2007, 12:54 PM

Excellent stuff TJ - thanks.

StarStruckGirl · 08-30-2007, 01:22 PM

hi Geek Girl,

thanks for the info...

is that just for the plug-ins or for the programmes themselves?

if i have removed/disabled the plug-ins, am i still at risk?

many thanks

Star Struck

Geekgirl · 08-30-2007, 01:37 PM

Quote:

These applications are media players, browser plug-ins that play media files, or a browser itself (i.e., Firefox). All of these programs can be attacked across the Internet for example, if you play an infected Flash video you find on a Web site or that you received via e-mail. Consequently, using an older version of these program poses a real security risk. (i.e., Firefox).

joangolfing · 09-07-2007, 04:50 AM

Geekgirl, I don't seem to have Java runtime on my system and I can't seem to install it.
I added www.java.com to my accepted sites but the install doesn't finish.
What can I do to be able to use software inspector?

Geekgirl · 09-10-2007, 06:07 PM

You need to start a thread so we can get java straightened out for you. Best play would probably be Windows XP forum, if that is the Operating System you are using.

SusannaKB · 10-01-2007, 09:36 PM

Geekgirl,
could you help me? What should I do if the scan found multiple versions? Do I need multiple versions? I pasted what it found, and I put those in red that were "X"-ed

Microsoft Windows XP Home Edition Service Pack 2

Adobe Acrobat Reader 4.x 4.0.0.0

Apple Quicktime 5.x 5.0.2

Microsoft Internet Explorer 6.x 6.00.2900.2180

Microsoft Outlook Express 6 6.00.2900.2180

Microsoft Windows Media Player 9.x 9.00.0

Adobe Flash Player 9.x 9.0.28.0

Adobe Flash Player 9.x 9.0.28.0

Macromedia Flash Player 6.x 6.0.79.0

Macromedia Flash Player 6.x 6.0.88.0

Sun Java JRE 1.6.x / 6.x 6.0.20.6

Sun Java JRE 1.6.x / 6.x 6.0.10.6

Thank you,

Geekgirl · 10-02-2007, 02:25 PM

If you have multiple copies of a single application installed, the report will list each version. Click the "+" icon to the left of each item for more information, including the specific path to each file.
If the scan finds multiple versions of software, sometimes older versions represent a security risk to your system. But in some cases (such as Java), you may need an older version to keep other application software running properly.

SusannaKB · 10-02-2007, 02:49 PM

Geekgirl,

How do I know when and what to get rid of, if at all? Please forgive me it that is a stupid question, I am just learning and I don't know much about computers, yet.

Geekgirl · 10-02-2007, 03:01 PM

Basically you do not want to rid of anything but keep it updated.
And your questions are not stupid, not at all

SusannaKB · 10-02-2007, 03:10 PM

Oh thank you!
I really love this site - I might actually learn computers after all.

JohnthePilot · 12-21-2007, 04:57 PM

This thread shouldn't be hidden away here GG. Would you consider copying it to the MS forums where it would have a wider audience? Thanks.

Geekgirl · 12-22-2007, 05:53 AM

Sure I can do that

possy · 02-08-2008, 03:57 AM

Good Stuff. Thanks

08-19-2007, 10:05 AM	#1 (permalink)
Geekgirl Manager, Microsoft Support Join Date: Jan 2005 Location: Pennsylvania Posts: 11,971 OS: 98SE/WinXP Home/WinXP Pro Blog Entries: 1	Security Risks from unpatched media players...Are you at Risk? Are you facing security risks, not from flaws in Windows itself but from unpatched media players? If you are running versions of Flash, Java, and QuickTime that are unpatched you could be at risk Tests have shown which applications are the most likely to be installed but unpatched on users' PCs. In the following list, number 1 represents the unpatched application that was found on the greatest number of users' machines, with higher numbers representing fewer machines: 1. Adobe Flash Player 9.x 2. Sun Java JRE 1.6.x/6.x 3. Macromedia Flash Player 6.x 4. Macromedia Flash Player 8.x 5. Macromedia Flash Player 7.x 6. Apple QuickTime 7.x 7. Macromedia Flash Player 5.x 8. Mozilla Firefox 2.0.x 9. Macromedia Flash Player 4.x 10. Adobe Reader 7.x These applications are media players, browser plug-ins that play media files, or a browser itself (i.e., Firefox). All of these programs can be attacked across the Internet for example, if you play an infected Flash video you find on a Web site or that you received via e-mail. Consequently, using an older version of these program poses a real security risk. All of the applications mentioned above support automatic updating. They also allow you to choose to update them manually which some users prefer. If you prefer to update manually, update them on your regulary scheduled malware scan schedule. Now your probably wondering, how can I tell if my software is out-of-date? Good question, and here is a program to tell you just that You can use Software Inspector at Secunia.com.....its free This online utility requires Java to run, so you should use the Java update procedure below to make sure you have the latest version of Java before proceeding. To update Sun Java: Step 1. In the Control Panel, launch the Java applet. You can also right-click the Java icon in the Taskbar tray and choose Open Control Panel. Step 2. Click the Update tab. Use the controls there to customize the update notification. Click OK. If you prefer to update Java manually, uncheck the box for automatic updating. Then return to this dialog box periodically and click Update Now at the bottom of the Update tab. Now, Test your software with Software Inspector The scan will find software (including the operating system) with known security flaws for which patches exist. The on-screen report lists your updated apps (with a green checkmark) and nonupdated apps (with a red X). If you have multiple copies of a single application installed, the report will list each version. Click the "+" icon to the left of each item for more information, including the specific path to each file. Software Inspector does not flag applications for which no update exists. Unfortunately, you may still have applications with security holes that aren't mentioned in the report. In addition, the program can't detect any workarounds you may have put in place to avoid security problems with existing applications. If the scan finds multiple versions of software, sometimes older versions represent a security risk to your system. But in some cases (such as Java), you may need an older version to keep other application software running properly. Before doing anything, make a backup of your system, or at least create a restore point using System Restore. Secunia's Software Inspector is especially valuable for those of us who prefer to use manual updating, rather than letting programs check and download patches automatically. The scan not only tells you what updates to look for, but it checks all your software in a single step without having to use each application's update feature one at a time. You may forget to use Software Inspector periodically, so to automate that chore, click the reminder service link on the Software Inspector page. This will send you an e-mail notification every time a new update or version is available. It's frustrating to know that, even when Windows is fully patched, our application software can represent an even greater vulnerability. To reduce your risk, consider running Software Inspector once a month, just after you've installed the Windows patches that Microsoft typically releases on Patch Tuesday (the 2nd Tuesday of the month). __________________ Compare NOD32 to your current antivirus and anti-spyware solution, HERE How to back up and restore the registry in Windows XP and Windows Vista How to back up and restore the registry in Windows 98/ ME / NT 4.0 / 2000 I DO NOT ACCEPT EMAILS AND WILL NOT REPLY TO THEM !!!!! I Have Been Smoke-Free For 10 Months, you can quit too R.I.P. KITTY

08-19-2007, 11:03 AM	#2 (permalink)
Done_Fishin Moderator Hardware Team Join Date: Oct 2006 Location: Born in London, England, Living in Athens, Greece Posts: 4,729 OS: Win ME, Win XP Pro SP3, Ubuntu 7.04, Mepis 6.5 My System	Re: Security Risks from unpatched media players...Are you at Risk? Thanks GG A very helpful thread & site .. I had a PC where the auto updates were turned off .. that site and link allowed me to see that and get it back up to date , update wise. very useful .. seems like I will be checking out that site more often .. or until they start asking me to pay __________________ D_F

08-19-2007, 12:54 PM	#3 (permalink)
Glaswegian Moderator/ Rangemaster TSF Academy; Analyst, Security Team; Oor Wullie; TSF Surgeon and Resident Comic Join Date: Sep 2005 Location: Glasgow Posts: 20,698 OS: Win XP Pro SP3 My System Blog Entries: 9	Re: Security Risks from unpatched media players...Are you at Risk? Excellent stuff TJ - thanks. __________________ Iain - Defender of the Haggis and all things Scottish. I don't help by PM - post in the Forums. Ad-Aware::SpywareBlaster::SpyBot::SpywareGuard::SnoopFree::AVG Free::HOSTS File::HijackThis::Donate::5 Steps For Infected PCs

08-30-2007, 01:22 PM	#4 (permalink)
StarStruckGirl Registered User Join Date: Aug 2007 Posts: 3 OS: xp	Re: Security Risks from unpatched media players...Are you at Risk? hi Geek Girl, thanks for the info... is that just for the plug-ins or for the programmes themselves? if i have removed/disabled the plug-ins, am i still at risk? many thanks Star Struck

09-07-2007, 04:50 AM	#6 (permalink)
joangolfing Registered User Join Date: Jun 2007 Posts: 172 OS: WinXP	Re: Security Risks from unpatched media players...Are you at Risk? Geekgirl, I don't seem to have Java runtime on my system and I can't seem to install it. I added www.java.com to my accepted sites but the install doesn't finish. What can I do to be able to use software inspector?

09-10-2007, 06:07 PM	#7 (permalink)
Geekgirl Manager, Microsoft Support Join Date: Jan 2005 Location: Pennsylvania Posts: 11,971 OS: 98SE/WinXP Home/WinXP Pro Blog Entries: 1	Re: Security Risks from unpatched media players...Are you at Risk? You need to start a thread so we can get java straightened out for you. Best play would probably be Windows XP forum, if that is the Operating System you are using. __________________ Compare NOD32 to your current antivirus and anti-spyware solution, HERE How to back up and restore the registry in Windows XP and Windows Vista How to back up and restore the registry in Windows 98/ ME / NT 4.0 / 2000 I DO NOT ACCEPT EMAILS AND WILL NOT REPLY TO THEM !!!!! I Have Been Smoke-Free For 10 Months, you can quit too R.I.P. KITTY

10-01-2007, 09:36 PM	#8 (permalink)
SusannaKB Registered User Join Date: Jul 2007 Location: Midwest, US Posts: 176 OS: Windows XP SP2	Re: Security Risks from unpatched media players...Are you at Risk? Geekgirl, could you help me? What should I do if the scan found multiple versions? Do I need multiple versions? I pasted what it found, and I put those in red that were "X"-ed Microsoft Windows XP Home Edition Service Pack 2 Adobe Acrobat Reader 4.x 4.0.0.0 Apple Quicktime 5.x 5.0.2 Microsoft Internet Explorer 6.x 6.00.2900.2180 Microsoft Outlook Express 6 6.00.2900.2180 Microsoft Windows Media Player 9.x 9.00.0 Adobe Flash Player 9.x 9.0.28.0 Adobe Flash Player 9.x 9.0.28.0 Macromedia Flash Player 6.x 6.0.79.0 Macromedia Flash Player 6.x 6.0.88.0 Sun Java JRE 1.6.x / 6.x 6.0.20.6 Sun Java JRE 1.6.x / 6.x 6.0.10.6 Thank you, __________________ Susanna Last edited by SusannaKB : 10-01-2007 at 09:39 PM.

10-02-2007, 02:25 PM	#9 (permalink)
Geekgirl Manager, Microsoft Support Join Date: Jan 2005 Location: Pennsylvania Posts: 11,971 OS: 98SE/WinXP Home/WinXP Pro Blog Entries: 1	Re: Security Risks from unpatched media players...Are you at Risk? If you have multiple copies of a single application installed, the report will list each version. Click the "+" icon to the left of each item for more information, including the specific path to each file. If the scan finds multiple versions of software, sometimes older versions represent a security risk to your system. But in some cases (such as Java), you may need an older version to keep other application software running properly. __________________ Compare NOD32 to your current antivirus and anti-spyware solution, HERE How to back up and restore the registry in Windows XP and Windows Vista How to back up and restore the registry in Windows 98/ ME / NT 4.0 / 2000 I DO NOT ACCEPT EMAILS AND WILL NOT REPLY TO THEM !!!!! I Have Been Smoke-Free For 10 Months, you can quit too R.I.P. KITTY

10-02-2007, 02:49 PM	#10 (permalink)
SusannaKB Registered User Join Date: Jul 2007 Location: Midwest, US Posts: 176 OS: Windows XP SP2	Re: Security Risks from unpatched media players...Are you at Risk? Geekgirl, How do I know when and what to get rid of, if at all? Please forgive me it that is a stupid question, I am just learning and I don't know much about computers, yet. __________________ Susanna

10-02-2007, 03:01 PM	#11 (permalink)
Geekgirl Manager, Microsoft Support Join Date: Jan 2005 Location: Pennsylvania Posts: 11,971 OS: 98SE/WinXP Home/WinXP Pro Blog Entries: 1	Re: Security Risks from unpatched media players...Are you at Risk? Basically you do not want to rid of anything but keep it updated. And your questions are not stupid, not at all __________________ Compare NOD32 to your current antivirus and anti-spyware solution, HERE How to back up and restore the registry in Windows XP and Windows Vista How to back up and restore the registry in Windows 98/ ME / NT 4.0 / 2000 I DO NOT ACCEPT EMAILS AND WILL NOT REPLY TO THEM !!!!! I Have Been Smoke-Free For 10 Months, you can quit too R.I.P. KITTY

10-02-2007, 03:10 PM	#12 (permalink)
SusannaKB Registered User Join Date: Jul 2007 Location: Midwest, US Posts: 176 OS: Windows XP SP2	Re: Security Risks from unpatched media players...Are you at Risk? Oh thank you! I really love this site - I might actually learn computers after all. __________________ Susanna

12-21-2007, 04:57 PM	#13 (permalink)
JohnthePilot Asst Manager, TSF Articles Join Date: Mar 2006 Location: Cheltenham, near Wales. Posts: 25,776 OS: XP Home SP3, PCLinux, Vista Home Premium SP1 My System Blog Entries: 1	Re: Security Risks from unpatched media players...Are you at Risk? This thread shouldn't be hidden away here GG. Would you consider copying it to the MS forums where it would have a wider audience? Thanks. __________________ Submit New Articles Here If you feel that TSF has helped you please make a donationand help to keep the forum free Cenedl heb iaith, cenedl heb galon Folding@Home - Team 85015

12-22-2007, 05:53 AM	#14 (permalink)
Geekgirl Manager, Microsoft Support Join Date: Jan 2005 Location: Pennsylvania Posts: 11,971 OS: 98SE/WinXP Home/WinXP Pro Blog Entries: 1	Re: Security Risks from unpatched media players...Are you at Risk? Sure I can do that __________________ Compare NOD32 to your current antivirus and anti-spyware solution, HERE How to back up and restore the registry in Windows XP and Windows Vista How to back up and restore the registry in Windows 98/ ME / NT 4.0 / 2000 I DO NOT ACCEPT EMAILS AND WILL NOT REPLY TO THEM !!!!! I Have Been Smoke-Free For 10 Months, you can quit too R.I.P. KITTY

02-08-2008, 03:57 AM	#15 (permalink)
possy Registered User Join Date: Dec 2007 Posts: 6 OS: xp	Re: Security Risks from unpatched media players...Are you at Risk? Good Stuff. Thanks

03-26-2008, 04:20 PM	#16 (permalink)
parminderkarra Registered User