"
For users that were unable to update to BlackBerry PlayBook software version 2.0.1.668, RIM strongly recommends completing the following workaround instructions to fully protect the BlackBerry PlayBook tablet against the vulnerabilities in this advisory.
This risk can only be mitigated by temporarily disabling all Adobe Flash content in the browser on the BlackBerry PlayBook tablet (in the browser, tap Options > Content, and set Enable Flash to Off).
"
upgrade to the beta or disable flash. 2 easiest option right now. updating to the beta is easiest and really doesnt have any dealbreakers. Just as buggy as OS 2 is really
I was under the impression that they fixed that issue as when. 668 went out even the beta users received a small update like 3mb. That didn't change the build number, so thinking that when. 668 was pulled that update was added to the old build. Though that is speculation on my point.
So what were the issues with 668 i installed it in my PB and i have noticed nothing wrong with it ?
If you don't have any problems with .668 then there is no reason to make a change. The majority of users(on this forum) that updated to .668 have had no issues.
The version in 2.0.1.358 is listed as 11.1 r121 when I got to the mozilla plugin checker website.
What version of Flash does 2.0.1.668 and 2.1 beta have?
Regarding professional grade tablets and what is acceptable or not, the ONLY tablets that will have upgraded Flash are the Windows based tablets. People thought Adobe really was abandoning flash because it was "loosing" to HTML5. In retrospect, Microsoft is Winning ,
check!,
"+=",
"Adobe_stops_support_of_flash_for_PB_then_Android_ and?!"
This is absolutely unnacceptable for a professional grade tablet.
The setup process forces new users to update to 358 out of the box, and it defaults to having Flash turned on, despite RIM knowing for over a month it has major security issues.
You'd think at least they would have pushed out a required update that has Flash disabled until a fix is available?
The setup process forces new users to update to 358 out of the box, and it defaults to having Flash turned on, despite RIM knowing for over a month it has major security issues.
You'd think at least they would have pushed out a required update that has Flash disabled until a fix is available?
Right!!! Bad job of RIM! I expect better.
Apart from that, is that Flash Vulnerability really harmful on various plattforms? If bad guys want to install malware, it's usually Windows based code, that couldn't run on a playbook. Is this here different?
Apart from that, is that Flash Vulnerability really harmful on various plattforms? If bad guys want to install malware, it's usually Windows based code, that couldn't run on a playbook. Is this here different?
Ray
True that RCE (Remote Code Execution) will most likely target Windows systems, but to rely on no specific Playbook threats is security through obscurity. If someone is interested enough, they will code malware to a platform of their liking.
However, I personally feel safer on a Playbook.
Adobe lists priority ratings per change log, and in the latest vulnerability they list Windows as priority 1, Macintosh as priority 2, and Linux and Android at priority 3.
Priority 1 This update resolves vulnerabilities being targeted, or which have a higher risk of being targeted, by exploit(s) in the wild for a given product version and platform. Adobe recommends administrators install the update as soon as possible. (for instance, within 72 hours).
Priority 2 This update resolves vulnerabilities in a product that has historically been at elevated risk. There are currently no known exploits. Based on previous experience, we do not anticipate exploits are imminent. As a best practice, Adobe recommends administrators install the update soon (for instance, within 30 days).
Priority 3 This update resolves vulnerabilities in a product that has historically not been a target for attackers. Adobe recommends administrators install the update at their discretion.
I think some of you are being way too paranoid. What are the odds that anyone is going to target the PB to exploit this supposed vulnerability, and then what are the odds that you will then happen to click on some flash content that is targeted at the PB's vulnerability? Now, as to your Windows based desktop, that's another story.
You'd think at least they would have pushed out a required update that has Flash disabled until a fix is available?
I disagree. For the majority of users the threat is a non issue. Chances of becoming infected are slim, and even if they did most aren't keeping anything that sensitive on their devices.
Those who are obviously need to be mindful to turn off flash until there is a fix, but for the majority of novice users it's better to leave it on out of the box and maintain that superior browsing experience. Other wise the security efforts which aren't necessary for these users are impacting performance and their general impressions of their new tablet, leading to returns and/or poor reviews and word of mouth.
