Statement von Macromedia zum Flashvirus
Troy Evans schrieb über die MMUG-Mailingliste folgende Zeilen, die wir Ihnen nicht vorenthalten wollen:
Macromedia was recently informed of a potential issue with the standalone Macromedia Flash Player running on Microsoft Windows. This issue does not affect web content viewed in a browser.
After testing by both Macromedia and Sophos Anti-virus, the company who initially reported this, Macromedia has found that this issue can only affect content that is sent via email or downloaded from a site and then run outside a browser.
This risk only occurs when malicious content is played back in a Macromedia standalone Flash Player. There are two forms of the standalone player:
- A version used by developers to test and build standalone projectors that is installed with Flash Authoring
- A standalone Projector, or executable application, that is compiled by a developer and distributed via email or website download)
Neither of these standalone players are installed through a web browser and therefore does not present a risk to the average web user.
The behavior of this particular reported virus, SWF/LFM-926, is as follows:
When executed on a Windows operating system, the virus displays a message saying "Loading Flash Movie". It then creates a program that infects only other Flash files on the same system with the same virus.
FIRST AND FOREMOST: E-mail users should never open or download attachments or data unless they can be sure it is from a trusted source.
For maximum system security, take the following steps:
1 Download and run the SWF Clear Utility .
For help downloading files, refer to Downloading files from the Internet (TechNote 13686).
This utility removes file type associations for the SWF file format to the standalone Flash Player. The result is that opening any SWF file will cause the operating system to prompt you to indicate which program to open the file with. Subsequently, if you receive this prompt when attempting to open a SWF file, cancel the procedure and do not open the file to ensure greatest security.
Note: Reinstalling the Flash application wil re-associate the file type. If you need to reinstall Flash, run the SWF Clear Utility again for maximum security.
2 Do not open .EXE attachments or files if you do not trust the source!
.EXE is a file format for any executable file. These can be programs including installers and Flash projectors, among many other types of files. For maximum security, do not open these types of files unless you are specifically expecting to receive an .EXE from a trusted source.
If you receive a .SWF file or an .EXE file from a trusted source, verify with the sender that the content is safe before opening.
If you would like to send secure Flash content via email, notify your recipients via other venues that the file is safe. Many Flash developers choose instead to publish the content to the web and email a link instead of an attachment.