First  Prev  1  2  Next  Last
Post Reply Adobe Flash Player Exploits...
20644 cr points
Send Message: Send PM GB Post
Offline
Posted 7/13/15 , edited 7/14/15
Well, in response to the recent vulnerabilities in adobe flash player is Crunchyroll planning / developing a switch to html5 video? It's gonna be a bummer if we get some malware while innocently trying to watch some anime. I don't want to be too negatively alarming, but the latest I've read on the issue seems really bad. Anyone with some expert knowledge able to contribute or advise us?
20904 cr points
Send Message: Send PM GB Post
22 / M
Offline
Posted 7/13/15 , edited 7/14/15
Yo,This topic have been address before, Adobe Flash player have been set as the Copyright Protection of the videos on Crunchyroll by the publishers, at the beginning Crunchyroll cold not use HTML5 because it did lack of copyright content protection. It wont change anytime soon.
794 cr points
Send Message: Send PM GB Post
19 / California, USA
Offline
Posted 7/13/15
No, I don't want CrunchyRoll to switch to Html5 if it forces it on everybody. Ideally it would make an Html5 option and keep the older flash options. I use an old computer with slow internet to boot, and Flash Player is much faster than Html5.

In regards to the security threats by Adobe, I've always logged out of any websites I use when I don't use them and use Incognito or Inprivate browsing. I have to trust that Adobe will fix the issues soon.
35191 cr points
Send Message: Send PM GB Post
25 / M
Offline
Posted 7/13/15 , edited 7/14/15
People are blowing this way out of proportion. Yes, there's a known vulnerability with flash, but as long as you have anitvirus and stay off of suspicious websites, primarily port and illegal download sites, then you shouldn't have a problem. You aren't going to get a virus from Crunchyroll because Crunchyroll isn't trying to give you viruses.

The vulnerability is going to be patched soon. In the meantime, just practice safe and smart browsing and you'll be fine.
41699 cr points
Send Message: Send PM GB Post
F
Offline
Posted 7/13/15

Aethix0 wrote:

People are blowing this way out of proportion. Yes, there's a known vulnerability with flash, but as long as you have anitvirus and stay off of suspicious websites, primarily port and illegal download sites, then you shouldn't have a problem. You aren't going to get a virus from Crunchyroll because Crunchyroll isn't trying to give you viruses.

The vulnerability is going to be patched soon. In the meantime, just practice safe and smart browsing and you'll be fine.


Technically, the vulnerability has already been patched and/or is in an earlier version of Flash, at least according to what I read elsewhere.
Posted 7/14/15 , edited 7/23/15

animegirl2222 wrote:


Aethix0 wrote:

People are blowing this way out of proportion. Yes, there's a known vulnerability with flash, but as long as you have anitvirus and stay off of suspicious websites, primarily port and illegal download sites, then you shouldn't have a problem. You aren't going to get a virus from Crunchyroll because Crunchyroll isn't trying to give you viruses.

The vulnerability is going to be patched soon. In the meantime, just practice safe and smart browsing and you'll be fine.


Technically, the vulnerability has already been patched and/or is in an earlier version of Flash, at least according to what I read elsewhere.


Nope, they discovered new zero day exploits in both Java and Flash. Adobe expects to have a patch later this week for the flaw in Flash.
https://helpx.adobe.com/security/products/flash-player/apsa15-04.html

In Chrome you can go to chrome://settings/content and select "Let me choose when to run plugin content" under Plugins.

In Firefox you can go to about:addons and change Flash to "Ask to Activate". Though running a plugin like No Script is probably even better.

Of course the same can be done for Java if you have it installed. I haven't seen anything from Oracle about a patch.


Edit: In case CR needs more encouragement to update to Html5. http://gizmodo.com/firefox-now-blocks-flash-by-default-1717664482
46382 cr points
Send Message: Send PM GB Post
20 / M / Sweden
Offline
Posted 7/14/15 , edited 7/23/15

Bryaugh wrote:

Well, in response to the recent vulnerabilities in adobe flash player is Crunchyroll planning / developing a switch to html5 video? It's gonna be a bummer if we get some malware while innocently trying to watch some anime. I don't want to be too negatively alarming, but the latest I've read on the issue seems really bad. Anyone with some expert knowledge able to contribute or advise us?


HTML5 doesn't allow DRM and HDCP therefore they won't switch to HTML5. But they might decide to make their own player since flash is gonna die whitin a year whit browsers like Chrome that's gonna remove flash
7415 cr points
Send Message: Send PM GB Post
48 / M / New England, USA
Offline
Posted 7/14/15
It's not just Java and Flash. It's been said the exploits extend to Silverlight as well. It's been a real pain having to deal with this bs.
7011 cr points
Send Message: Send PM GB Post
25 / M
Offline
Posted 7/14/15 , edited 7/14/15
how ironic that piracy is safer for your computer than watching anime legitimately.
Posted 7/14/15 , edited 7/23/15

TheOmegaForce70941 wrote:


Bryaugh wrote:

Well, in response to the recent vulnerabilities in adobe flash player is Crunchyroll planning / developing a switch to html5 video? It's gonna be a bummer if we get some malware while innocently trying to watch some anime. I don't want to be too negatively alarming, but the latest I've read on the issue seems really bad. Anyone with some expert knowledge able to contribute or advise us?


HTML5 doesn't allow DRM and HDCP therefore they won't switch to HTML5. But they might decide to make their own player since flash is gonna die whitin a year whit browsers like Chrome that's gonna remove flash


HTML5 explicitly supports DRM through the EME standards. The EME modules have hooks that allow for protection in network transit via encryption and protection of memory buffers on the client side as well as HDCP though specific protections depend on the implementation of the EME being used. Indeed Netflix's HTML 5 player uses HDCP.





LordCaiphas wrote:

how ironic that piracy is safer for your computer than watching anime legitimately.


Not really. You'd probably be more likely to encounter malicious Flash apps on pirate sites.
It's unlikely CR would intentionally exploit their flash player to deliver a malicious payload.



7032 cr points
Send Message: Send PM GB Post
21 / M
Offline
Posted 7/14/15 , edited 7/14/15
What about Silverlight as alternative? Netflix uses it.
7032 cr points
Send Message: Send PM GB Post
21 / M
Offline
Posted 7/14/15 , edited 7/14/15
What about Silverlight as alternative? Netflix uses it.
Posted 7/14/15 , edited 7/23/15

DatKuroiSama wrote:

What about Silverlight as alternative? Netflix uses it.


Microsoft has depreciated Silverlight and said it will reach end of life sometime in 2021 after which it won't be updated at all. If Netflix still supports it, it's for legacy devices or people who have disabled EME support in their browser. Also Google is doing away with the NPAPI which Silverlight uses for non-IE browsers. I wouldn't be surprised if Firefox etc announced similar moves.

5041 cr points
Send Message: Send PM GB Post
Offline
Posted 7/14/15
HTML5 FTW!!!
CR is the reason i have Flash installed. I disable flash on any site other than CR.
Please CR, switch to HTML5. It save battery on my laptop.
35130 cr points
Send Message: Send PM GB Post
37 / F / Seireitei, Soul S...
Offline
Posted 7/14/15
When I went to Crunchyroll's website earlier today, before even logging in, my Firefox browser blocked my Adobe Flash Player from playing anything, and that's with me having AdBlock on. I went to the Adobe site and updated it. Haven't played anything on Crunchyroll yet, but as long as you're downloading it from the actual, official site, you should be fine. You just gotta check the URL, and I guess that's why it was blocked when I got on. Also, I haven't been on my computer in a few days due to work and being sick, so this is the first I've heard of this.

As for the other options, HTML5 sucks for video quality even when you have high internet speed. I know because I've tried using it on other sites and the video quality was lower than when I used Flash Player on them. And I have 100Mbps internet speed.

As for Silverlight, that's a long time before it goes out of use, almost seven years, so if Flash Player becomes unstable enough for Crunchyroll to be able to use it, that could be an option. There are also new internet video players out there that are being developed/in development that Crunchyroll could eventually use as well.

I haven't watched any videos online on any site at all yet today, but I'm pretty sure that I'll be safe when I do. The Antivirus program that I use is WebRoot, which blocks anything on any website or that you try to download that might be malicious before you even go to the site or try and download it.
First  Prev  1  2  Next  Last
You must be logged in to post.