Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Using 35.01 Updated flash to 16.0.0.296 and still says vulnerable

  • 4 replies
  • 10 have this problem
  • 1 view
  • Last reply by James

more options

Have updated Firefox to 35.01, Checked add-ons, Firefox plugin check & updates said its vulnerable. Went through normal flash update procedure directly from Firefox link on the plugin check & updates. Installed update. Rebooted Plugin check & updates still says vulnerable. Checked Adobe website page, "You have version 16,0,0,296 installed" and it works fine. This is the latest version (as of 11.38 GMT 03-02-2015).

This issue has been previously raised, but people have been fobbed off with issues surrounding latest FF update and previous Flash updates which happened close to each other.

Any ideas ?

Adobe thinks its ok, so this must be a 35.01 issue or other FF compatibility issue.

Have updated Firefox to 35.01, Checked add-ons, Firefox plugin check & updates said its vulnerable. Went through normal flash update procedure directly from Firefox link on the plugin check & updates. Installed update. Rebooted Plugin check & updates still says vulnerable. Checked Adobe website page, "You have version 16,0,0,296 installed" and it works fine. This is the latest version (as of 11.38 GMT 03-02-2015). This issue has been previously raised, but people have been fobbed off with issues surrounding latest FF update and previous Flash updates which happened close to each other. Any ideas ? Adobe thinks its ok, so this must be a 35.01 issue or other FF compatibility issue.

All Replies (4)

more options

hello UKTricky, unforunatley the result of the plugin-check page is correct, there has been yet another vulnerability found in adobe flash player 16.0.0.296 which is already exploited in the wild. see the security advisory: https://helpx.adobe.com/security/products/flash-player/apsa15-02.html

there is no fix for it released by adobe yet and the update button on the plugin check site will lead nowhere at the moment - so it's best to set the shockwave flash plugin to ask-to-activate in the firefox addons > plugins panel!

more options

philipp is right. What I did was set to "never activate." Then I don't get as many nag screens. Why I post this is that I found that almost all embedded content, and YouTube, all played just fine without Flash.

That was a huge discovery for me! Hopefully Adobe Flash will get it's act together soon. What they're losing is a lot of advertising revenue and that is probably making many commercial websites that rely on advertising revenue to support themselves really upset...then again, I don't really mind temporarily not getting the advertisements.

Regards, Axis

more options

This is not a Firefox 35.0.1 or any other Firefox version issue in other words.

more options

https://www.adobe.com/products/flashplayer/distribution3.html

Flash player 16.0.0.305, 13.0.0.269 esr and the 11.2.202.442 for Linux is now available for download.

https://helpx.adobe.com/security/products/flash-player/apsb15-04.html