funsec mailing list archives
Re: Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR)
From: "Richard M. Smith" <rms () computerbytesman com>
Date: Mon, 25 Feb 2008 08:31:55 -0500
Does anyone know of malware which use security flaws in Flash to do their dirty work? Richard -----Original Message----- From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Paul Ferguson Sent: Monday, February 25, 2008 12:38 AM To: funsec () linuxbox org Subject: [funsec] Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Via InfoWorld. [snip] Bridging the gap between desktop and Web applications, Adobe Systems is set to ship today its AIR (Adobe Integrated Runtime) 1.0 technology for melding applications from both of these realms. Formerly known by its code name Apollo, the free technology already is being used in applications at places such as NASDAQ and AOL. AIR is a desktop runtime that allows Web applications to be run on the desktop in a disconnected fashion, said Michele Turner, vice president of the Adobe platform business unit. "We really believe the innovation in technology today is... on the Web and that the desktop has stagnated over the last couple of years," she said. Supported on Windows and Macintosh, AIR extends to Web applications desktop capabilities such as drag-and-drop, system notification, and local file system access. Applications using AIR can be written using the same technologies commonly used to build Web applications, including Adobe Flex and Flash, HTML, and JavaScript. [snip] More: http://www.infoworld.com/article/08/02/24/adobe-air_1.html See also: http://www.infoworld.com/article/08/02/25/air-list_1.html Somehow, I think this is going to make a lot of people's lives a lot more interesting. I can't wait until NoScript integrates blocking for it... :-) - - ferg -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.6.3 (Build 3017) wj8DBQFHwlQlq1pz9mNUZTMRAmx0AKCo+AF1RdAagd6+jzsaZxits+d8sQCgujZH HvGUKoK5PULZ7wDoTBVhwaE= =9Zyg -----END PGP SIGNATURE----- -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg(at)netzero.net ferg's tech blog: http://fergdawg.blogspot.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) Paul Ferguson (Feb 24)
- Re: Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) Eduardo Tongson (Feb 24)
- Re: Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) security curmudgeon (Feb 24)
- Re: Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) Richard M. Smith (Feb 25)
- Re: Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) fukami (Feb 26)
- Re: Yet Another Emerging Web 2.0 Security Threat: Adobe Integrated Runtime (AIR) Richard M. Smith (Feb 26)