Changes

Flash Player

3,331 bytes removed, 15:20, 26 February 2009
Cleanup
Note: This probably also works for older versions of Flash (<9), but I believe the mms.cfg file then has to be copied to the Windows\system32 directory?
== Adobe Flash Player security settings for "Clickjacking" vulnerability (APSA08-08) == Waiting for the next version of Flash Player to be available, you are strongly encouraged to apply the following settings for security reasons: http://www.adobe.com/support/security/advisories/apsa08-08.html. According to bulletin and to the "Adobe Flash Player Administration Guide" (you find the link in the same security bulletin): * create a file named "mms.cfg"* write in this file the lines containing the "ParameterName = ParameterValue" pairs you need, "AVHardwareDisable = 1" in this APSA08-08 case* deploy it with the following WPKG package <source lang="xml"><package id="flash-settings" name="Adobe Flash Player settings for APSA08-08 vulnerability" revision="1" reboot="false" priority="0" execute="once"> <install cmd='%COMSPEC% /c copy /Y "%SOFTWARE%\Flash\settings\mms.cfg " "%WINDIR%\system32\Macromed\Flash\" ' /></package></source> Or you could just integrate this line with the installation packages above, if you do not want to keep it as a separate package. == Older versions == === Adobe Flash Player 9.0.124.0 for Firefox ===
You are encouraged to upgrade for security reasons: http://www.adobe.com/support/security/bulletins/apsb08-11.html and then to apply the security settings for "Clickjacking" vulnerability (APSA08-08) defined below.
</source>
  === Adobe Flash Player 9.0.124.0 for Internet Explorer ===
You are encouraged to upgrade for security reasons: http://www.adobe.com/support/security/bulletins/apsb08-11.html and then to apply the security settings for "Clickjacking" vulnerability (APSA08-08) defined below.
</source>
 == Adobe Flash Player security settings for "Clickjacking" vulnerability (APSA08-08) == Waiting for the next version of Flash Player to be available, you are strongly encouraged to apply the following settings for security reasons: http://www.adobe.com/support/security/advisories/apsa08-08.html. According to bulletin and to the "Adobe Flash Player Administration Guide" (you find the link in the same security bulletin): * create a file named "mms.cfg"* write in this file the lines containing the "ParameterName = ParameterValue" pairs you need, "AVHardwareDisable = 1" in this APSA08-08 case* deploy it with the following WPKG package <source lang="xml"><package id="flash-settings" name="Adobe Flash Player settings for APSA08-08 vulnerability" revision="1" reboot="false" priority="0" execute="once"> <install cmd='%COMSPEC% /c copy /Y "%SOFTWARE%\Flash\settings\mms.cfg " "%WINDIR%\system32\Macromed\Flash\" ' /></package></source> Or you could just integrate this line with the installation packages above, if you do not want to keep it as a separate package.  == Adobe Flash Player 9.0.115.0 for Firefox ===
Installer packaged as an executable, installs as a plugin.
</source>
=== Adobe Flash Player 9.0.115.0 for Internet Explorer ===
Installer packaged as .msi, installs as an ActiveX. The line "Adobe Flash Player 9 ActiveX" in Control Panel's Add/Remove Programs doesn't show any minor version, so both this line and the detailed ocx's file version have to be checked with a logical and condition.
</source>
 === Adobe Flash Player 9.0.47.0 for Firefox ===
Installer packaged as an executable, installs as a plugin. Didn't test if the uninstall_plugin.exe in the remove line removes both this and Internet Explorer Flash Player ActiveX.
</source>
=== Adobe Flash Player 9.0.47.0 for Internet Explorer ===
Installer packaged as .msi, installs as an ActiveX. The line "Adobe Flash Player 9 ActiveX" in Control Panel's Add/Remove Programs doesn't show any minor version, so both this line and the detailed ocx's file version have to be checked with a logical and condition.
</source>
 
== Older versions ==
 
Note: Recent versions of Flash for Firefox seem to install in a different directory than indicated below. You may need to change the check to:
 
<source lang="xml">
<check type="file" condition="versiongreaterorequal" path="%WINDIR%\system32\Macromed\Flash\NPSWF32.dll" value="9.0.45.0"/>
 
<check type="file" condition="versiongreaterorequal" path="%WINDIR%\system32\Macromed\Flash\Flash9c.ocx" value="9.0.45.0"/>
</source>
 
----
 
 
Here's the silent installers for the Adobe Flash Player 9 for IE and Firefox. Uninstalling the Firefox plugin is missing, since Adobe's uninstall_flash_player.exe removes both plugins, which is not our goal here. If you want to install a newer version (this is for 9.0.16.0), don't forget to change the value in the 'check type' tag. For downloading the .msi version (for the IE ActiveX control), Adobe has an easy registration procedure, but if you smart enough, you can find out how to download without registration :)
 
<source lang="xml">
<package
id="flashplayerfirefox"
name="Flash Player Firefox"
revision="90160"
reboot="false"
priority="0">
<depends package-id="firefox"/>
<check type="file" condition="versiongreaterorequal" path="%PROGRAMFILES%\Mozilla Firefox\plugins\NPSWF32.dll" value="9.0.16.0"/>
<install cmd='%SOFTWARE%\Flash\install_flash_player /S' />
<upgrade cmd='%SOFTWARE%\Flash\install_flash_player /S' />
</package>
 
 
<package
id="flashplayerie"
name="Flash Player IE"
revision="90160"
reboot="false"
priority="0">
<check type="logical" condition="and">
<check type="file" condition="versiongreaterorequal" path="%WINDIR%\system32\Macromed\Flash\Flash9.ocx" value="9.0.16.0"/>
<check type="uninstall" condition="exists" path="Adobe Flash Player 9 ActiveX"/>
</check>
<install cmd='msiexec /q /i %SOFTWARE%\Flash\install_flash_player_active_x.msi'>
<exit code="0" />
<exit code="3010" reboot="true" />
</install>
<upgrade cmd='msiexec /q /i %SOFTWARE%\Flash\install_flash_player_active_x.msi'>
<exit code="0" />
<exit code="3010" reboot="true" />
</upgrade>
<remove cmd='MsiExec.exe /q /X{BB65C393-C76E-4F06-9B0C-2124AA8AF97B}'/>
</package>
</source>
 
 
----
 
 
This is a silent installer for Adobe Flash Player.
 
There are versions of Adobe Flash Player for Internet Explorer and for [[Firefox|Mozilla Firefox]].
 
Adobe Flash Player for Firefox should be installed '''after''' Firefox is installed - and hence the [[Firefox]] installer should have a higher priority (or set a dependency).
 
'''This is an Adobe Flash Player for Mozilla Firefox installer:'''
 
<source lang="xml">
<package
id="flashplayerfirefox"
name="Flash Player Firefox"
revision="1"
reboot="false"
priority="0">
<check type="file" condition="exists" path="%PROGRAMFILES%\Mozilla Firefox\plugins\NPSWF32.dll" />
<install cmd='%SOFTWARE%\Flash_Firefox\flashplayer7installer.exe /S' />
</package>
</source>
 
'''This is an Adobe Flash Player for Internet Explorer installer:'''
 
<source lang="xml">
<package
id="flashplayerie"
name="Flash Player IE"
revision="1"
reboot="false"
priority="0">
<check type="file" condition="exists" path="%WINDIR%\system32\Macromed\Flash\Flash.ocx" />
<install cmd='%SOFTWARE%\Flash_IE\flashplayer7_winax.exe /Q' />
</package>
</source>
[[category:Silent Installers]]
[[category:Security Advisories]]
Anonymous user