Flash and Javascript Warning january 2013

saneks · 2013-01-11 19:44:58

edit: changed thread/threat title- to january 2013

Today I read on the news that some exploits for Flash and Javascript Java have been discovered, and users are advised to better disable both.

I don't know if I am safe using Linux, but apart from that, disabling both makes a pleasant difference when surfing the net. I had adblock and flashbloc before, but also some interfaces become surprisingly calm and simple without javascript and look kinda oldschool. Plus it loads faster on poor connections. Bad news can be good news.

Last edited by saneks (2013-01-20 07:03:09)

anonymous · 2013-01-12 00:03:34

I heard about an exploit for Java but not JavaScript:

http://labs.alienvault.com/labs/index.p … a-zeroday/

Do you have a link?

NewCityVegas · 2013-01-12 02:49:25

anonymous wrote:

I heard about an exploit for Java but not JavaScript ...

I'm sure that it is just java and not JavaScript.

Nobody is going to recommend disabling JavaScript since it is a core feature of almost all business web sites.

gutterslob · 2013-01-12 03:25:45

It's Java (not Javascript), as Anon and NCV stated. Specifically, it's Oracle's proprietary Java SE 7. It remains to be seen whether OpenJDK contains the same vulnerabilities, but considering the fact that Oracle's JRE is based on JDK, I say the risks are there as well.

No idea about the Flash vulnerability, though. Source?

anonymous · 2013-01-12 03:31:49

I found this for Flash:

http://www.adobe.com/support/security/b … 13-01.html

However Adobe already released an updated Flash, so you just need to grab it.

CBizgreat! · 2013-01-16 14:30:31

Wouldn't worry too much, the fact that java is a poss problem is older than Jebuz's diapers folks.

I wuv noscript ( plugin for all mozilla based browsers.) anyway. If only for the RAM and cpu savings ... any Security benefit is just a bonus imo, shrugs. Am sure Chrome and Opera have knockoffs of noscript. In fact have played with some of them but don't use those browsers regardless. Flash ... what else is new also ? Supposed to be a dying technology. Sooner the better me thinks. Long since wished for an end to adobe's curse ... System resource sucking pigdog from heel !!! Hopefully it gets outmoded soon.

Personally haven't seen much reason to install Java ... Jre or opensource equiv's on OS's for quite awhile myself. Not that I'm all that concerned about poss Security probs either way. Just not coming up with a compelling reason to have it enabled ... more shrugs.

Vll!

Last edited by CBizgreat! (2013-01-16 15:04:54)

shengchieh · 2013-01-20 05:50:22

Unfortunately I have to use jave for the house security camera. So what I'm planning
is to allow jave for one browser and use it only for security. And let the other browsers
w/ disabled java surf. [I have 3 browsers on my laptop.]

Sheng-Chieh

anonymous · 2013-01-20 05:54:48

It should be alright to use after you get the recent update.

pmo · 2013-01-20 07:33:58

Firefox/Icewhesel + NoScript.. I don't know if Chromium has it yet but it's nice.. I personally disabled java on my browsers.

schwim · 2013-01-20 15:24:12

In IW, I run:

adblock
adblock element hiding helper
noscript
quickjava

which pretty much negates any attacks through a browser.

Last edited by schwim (2013-01-20 15:29:12)

CrunchBang Linux

SEARCH

#1 2013-01-11 19:44:58

Flash and Javascript Warning january 2013

#2 2013-01-12 00:03:34

Re: Flash and Javascript Warning january 2013

#3 2013-01-12 02:49:25

Re: Flash and Javascript Warning january 2013

#4 2013-01-12 03:25:45

Re: Flash and Javascript Warning january 2013

#5 2013-01-12 03:31:49

Re: Flash and Javascript Warning january 2013

#6 2013-01-16 14:30:31

Re: Flash and Javascript Warning january 2013

#7 2013-01-20 05:50:22

Re: Flash and Javascript Warning january 2013

#8 2013-01-20 05:54:48

Re: Flash and Javascript Warning january 2013

#9 2013-01-20 07:33:58

Re: Flash and Javascript Warning january 2013

#10 2013-01-20 15:24:12

Re: Flash and Javascript Warning january 2013

Board footer