Trouble with Flash in Browsers

Here are a bunch of troubleshooting steps from Adobe to address Flash issues in Internet Explorer, Firefox, etc.

Installation problems | Flash Player | Windows

From: http://kb2.adobe.com/cps/191/tn_19166.html#products

If you are having problems downloading or installing Flash Player on a Windows computer, follow these troubleshooting steps:

1. Determine if you are using a 32-bit version of Internet Explorer on a 64-bit version of Windows.
2. Check whether an older Flash Player version is already installed.
3. Uninstall previous versions of Flash Player.
4. Verify Internet Explorer Settings (skip for other browsers such as Firefox or Google Chrome).
5. Download and install Adobe Flash Player (Internet Explorer)
6. Download and install Adobe Flash Player (Firefox)

After following these steps, if you still have problems, see Advanced Troubleshooting:

• Known Issues new as of 7/16/2011
• Update Flash Player on Windows 7 and Windows Vista
• Advanced troubleshooting
• Common errors with Flash Player 10.1 installation
  
• Integrated Flash Player in Google Chrome
• Out-of-Process crash handling in Mozilla Firefox
• More solutions

Gmail Attack Highlights Web Insecurity

Gmail Attack Highlights Web Insecurity
A man-in-the-middle attack that relied on an unauthorized Google SSL certificate has revived concern over whether any Web communication is really secure.

By Thomas Claburn InformationWeek
August 30, 2011 09:19 AM

A user posting to Google's Gmail Help forum under the name "Alibo" claims to have received a warning from Google's Chrome browser that the SSL certificate he received when visiting Gmail was a fake. A self-described resident of Iran, "Alibo" speculates that either his government or ISP, ParsOnline, presented the fake certificate to intercept his communications.

"Alibo" posted a copy of the certificate to PasteBin, and security researcher Moxie Marlinspike confirmed via Twitter that the certificate has a valid signature. That means that the person or entity using it could use it to intercept Gmail traffic via a man-in-the-middle (MITM) attack.

Google acknowledged the reported MITM attack and noted that the certificate authority (CA) issuing the certificate, DigiNotar, should not be issuing certificates for Google. The company also called attention to a Chrome security feature that blocked the attack.

"We're pleased that the security measures in Chrome protected the user and brought this attack to the public's attention," a spokesperson said in an email. "While we investigate, we plan to block any sites whose certificates were signed by DigiNotar."

To continue reading, here is the complete posting.