Most software available for us has many dangers, whether through a lack of security patches or the code itself being designed poorly. There are also spying scripts and malware types, especially in the “freeware” and “shareware” world. Does that mean you are doomed to endless worries? Probably so, however by following our advice, you will be as safe as possible.
Since manufacturers are required to faster reactions to newly discovered vulnerabilities, more and more updates will be introduced. Security experts predict that in future, more detailed information on sensitive areas of the programs will be readily available. Google Security Team shortened the response time to 60 days, and the U.S. CERT to 45 days.
End Of Fears On The Horizon – Windows Updater?
To make the management of Adobe better, the company is trying to integrate their software with Windows update process, so far this will offered only to business community. Meanwhile, the private user is waiting and hoping that soon all the applications will be able to independently carry out its own updates. Another potential option in the future is to use the Windows updater for updating not only its own Windows system, but other programs installed on your computer, as well. Although Microsoft did not confirm any specific plans for this, it is a real possibility.
Information policy is also a hot topic. While Mozilla and Microsoft talked openly about the existence of DLL gaps (“the differences” between the application and the operating system), Adobe would not give specific information as to its causes and ways to remove it. It is important to recognize that the clear risks arising from DLL gaps are present, and that an average user does not have a false sense of security.
DLL gaps were closed in many applications, however Acros showed that the problem still exists when loading EXE files. This version of the vulnerability is known to hackers, although harder to use, existing solutions do not sufficiently protect us against that danger. Developers have their hands full, dealing with this issue.
Link to this page
