News
Blogs
Shark Bait
Knowledge Centers
Opinion
Webcasts
Video
Podcasts
IT Careers
White Papers
Computerworld Reports
Zones
Case Study Library
RSS Feeds
Events
Industry
This Week in Print
Print Subscriptions


Ads by TechWords

See your link here


Michael Horowitz's picture
Michael Horowitz

Defensive Computing

More posts | Read bio

February 28, 2009 - 4:45 P.M.

Advice on updating the Adobe Flash Player

10 comments

If you haven't updated the Adobe Flash Player plugin in the last couple days, you shouldn't be viewing this web page.
Adobe just released an update to both versions 9 and 10 of their Flash player. The update fixes a number of problems and is available for Windows, OS X, Linux and Solaris.
 
The Flash player bugs are important enough that everyone should update the software. And I do mean everyone, the Flash player is very likely the most widely used software in the world. Adobe claims that the "Flash Player is installed on 98% percent of the world's desktop computers."  

Millions of web pages, including those at Computerworld.com, contain Flash content. Typically, Flash is used for ads, but websites may also use it for their navigation menus among other things.

Without the latest bug fix, a computer can get infected simply by viewing a web page.

For Windows users, upgrading the Flash player is particularly annoying as it may have to be done twice. The Flash player is packaged one way for Internet Explorer and another way for Firefox, Opera and Chrome. If, for example, you upgrade the IE version of Flash, then Firefox, Opera and Chrome won't pick up the update. Likewise, updating the Firefox version of the Flash player has no impact on Internet Explorer.

To see which version your web browsers are running, check each one at the Adobe Flash tester page (my term) www.adobe.com/products/flash/about/.

If you are running version 9, then versions 9.0.151.0 (9.0.152.0 for Linux) ) and earlier are buggy. Version 9.0.159.0  is safe. If you are running version 10, then versions 10.0.12.36 (10.0.15.3 for Linux) and earlier are buggy. Version 10.0.22.87 is safe.

Adobe always leads you to the latest and greatest, version 10.0.22.87. I mention this both because there is a safe edition of version 9, and because version 10 is relatively new. As far as I know, this is the first update to version 10. Being focused on Defensive Computing, I'm always hesitant to install the latest software. Instead, I like to hold back a while to let the inevitable bugs and incompatibilities get worked out. I haven't yet encountered a web page that required the use of Flash version 10.

You can get the latest edition of version 9 from Adobe at their page Flash Player 9 for Unsupported Operating Systems. For Windows users, the "Netscape" link works with Firefox, Opera and Chrome.

If you are new to this, Adobe provides Flash Player installation instructions.

They also offer an un-installer for the Flash Player. While not required, I suggest that Windows users first run the un-installer to remove both the IE and Firefox versions of the Flash player (see below).

There are different un-installers for Windows, OS X 10.3 and above, OS X 10.2 and below, and Mac OS 8 and 9. The Windows un-installer was last updated February 24, 2009.

SELF UPDATING

On Windows, the Flash player also has a self-updating system that may pop up the window shown below notifying you that a newer version is available (the screen shot below has been cropped a bit).

I wouldn't trust it.

For one thing, it doesn't say what version is currently installed and what the latest version is. It also doesn't address the multiple browser issue that Windows users face.

Another issue is not Adobe's fault at all. With all the false warnings about virus infections, we just can't trust messages like this. Bad guys writing malware could easily copy the look and feel of this message and lead someone to install their malicious software.

With a little snooping though, I found the source of this message - it's program NPSWF32_FlashUtil.exe in the
C:\WINDOWS\system32\Macromed\Flash folder.

If you run this program on a system with a buggy version of the Flash Player it displays the warning that an update is available. When run on a system with a safe version of the Flash player, it does nothing. As of today (Feb. 28, 2009), it considers the latest edition of version 9 (9.0.159.0) safe.

You can change how often Adobe checks for updates using the Adobe Flash Player Settings Manager (shown below).

The most frequent option is every 7 days. For more from Adobe, see  About updating Adobe Flash Player.

BLOCKING FLASH

Judging by the Flashblock extension to Firefox, there is a backlash against Flash. As of today, it has been downloaded 5,923,325 times. According to the website description Flashblock "... blocks ALL Flash content from loading. It then leaves placeholders on the webpage that allow you to click to download and then view the Flash content." The latest version of Flashblock was released February 6, 2009.

What People Are Saying

Add new comment

File located

Submitted by Anonymous on March 11, 2009 - 1:47 P.M.

I located the Adobe web site for ver. 9.0.159.0 here:
http://kb.adobe.com/selfservice/viewContent.do?externalId=kb406791&sliceId=1

This has corrected all my Flash problems.

Report this comment

Flash version 9.0.159.0 is

Submitted by Anonymous on March 11, 2009 - 11:35 A.M.

Flash version 9.0.159.0 is no longer apparently being offered (link above is bad). I have 10.0.22.87 installed, but I cannot see flash content on YouTube, NYTimes, etc. I had to install it in order to use Scrapblog builder. When will everyone else come to version 10? Frustrating to not be able to use YouTube in the meantime!

Report this comment

Flash version analysis

Submitted by Jolt on March 10, 2009 - 2:02 P.M.

You can see how different flash versions are installed by users here. For example, here is the install breakdown by Flash 10.

Report this comment

Better Flash/Shock test & version page

Submitted by Anonymous on March 2, 2009 - 4:31 P.M.

http://www.adobe.com/shockwave/welcome/

Shows both Flash & Shockwave (with a link to Authorware too), and can trigger downloads/updates.

You will need to click on "about" in the lower "flash" graphic to get Flash version.

Report this comment

Even Better Flash test & version page

Submitted by Stephen Lark on March 5, 2009 - 6:28 P.M.

Version test for Adobe Flash Player

Shows both the version of Flash Player currently installed and active in the browser and the most recent Flash Player version for all platforms

Report this comment

Just think ...

Submitted by Sikosis on March 1, 2009 - 8:48 P.M.

Adobe claims that the "Flash Player is installed on 98% percent of the world's desktop computers."

Just think, if Adobe had open sourced Flash, it could be everywhere ...

Report this comment

Like you said it already

Submitted by Max Keith Gates on April 18, 2009 - 8:01 P.M.

Like you said it already covers 98% of world's desktop computers, I don't think making it an open source software would had helped it any more. Its already everywhere.

Report this comment

Adobe AIR

Submitted by hylen on March 1, 2009 - 11:11 A.M.

Michael, what is Adobe Air? "In order to run Adobe Media Player, this installer will also setup [sic] Adobe® Air™."

http://tinyurl.com/ae2jxl

Click Install now and get this:

http://tinyurl.com/dy252b

I clicked no.

"AIR is intended to be a versatile runtime environment"

Whatever that may mean. Perhaps it's just unavoidable?

Report this comment

Not required for Flash

Submitted by Michael Horowitz on March 1, 2009 - 1:07 P.M.

I'm not familiar with Adobe's AIR, but my experience installing the Flash player has been that it is not required for Flash. Neither is the Adobe Media Player. Your first link is to an ad, no doubt one that you saw on Adobe's Flash tester page.

Report this comment

Adobe AIR...

Submitted by PC Tech on March 2, 2009 - 11:42 A.M.

...was installed by -default- with the latest version of Adobe Reader, which is also under the gun: http://secunia.com/advisories/33901/
Solution Status: Unpatched

Adobe Flash Player multiple vuln
- http://secunia.com/advisories/34012/
Release Date: 2009-02-25
Critical: Highly critical...
Solution: Apply vendor updates...
Flash Player 9.x: Update to version 9.0.159.0.
http://www.adobe.com/go/kb406791
Flash Player 10.0.12.36 and prior: Update to version 10.0.22.87...
- http://get.adobe.com/flashplayer/otherversions/
(Both IE -and- Firefox need the updates)

AIR 1.5: Update to version 1.5.1.
http://get.adobe.com/air ...

//

Report this comment

Related Posts

64-Bit Linux Adobe Flash Player: Surprisingly good
Everyone loves Adobe, except Apple: no Flash on iPhone
Patch up your Adobe
Could Adobe be open-sourcing Flash?

Today's Top Stories

Google's Chrome OS hits BitTorrent
Free Web apps to help organize your holidays
Global warming research exposed after hack
iPhone owners demand to see Apple source code
Some Nook e-readers won't make it for the holidays
Mike Elgan: Four things you need to know about Apple
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures
IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.