Thursday, September 3, 2009

Snow Leopard Ships with Vulnerable Flash Player

Via ZDNet -

Apple’s new operating system comes with an outdated version of Flash Player that exposes Mac users to hacker attacks.

The initial release of Mac OS X 1..6 (Snow Leopard) includes Flash Player, which is very much out of date. The fully patched version of Flash Player for Mac is version

Even worse, Intego reports that the vulnerable version of Flash is included even if the Mac user was fully patched before upgrading the operating system.

The current version of Flash Player for Mac is, but if you go to the Flash Player version test page after installing Snow Leopard, you’ll find that you have version, even if you were up-to-date before the upgrade. It seems that Apple is shipping an outdated, even dangerous version of Flash Player.

Adobe has also spotted the hiccup and released a security alert to warn of the problem.

The initial release of Mac OS X 10.6 (Snow Leopard) includes an earlier version of Adobe Flash Player than what is available from We recommend all users update to the latest, most secure version of Flash Player ( — which supports Snow Leopard and is available for download from


Why the hell is OS X installing flash (which is a 3rd party add-on) in the first place?

Even if there is a valid reason, why the hell is it installing over a newer version already in place?

In other "why the hell does Apple do this crap" news....they released a updated version of Java for Mac...which fixes several serious security vulnerabilities.

No comments:

Post a Comment