Vulnerability Note VU#249337
Flash authoring tools create Flash files that contain cross-site scripting vulnerabilities
A number of authoring tools for Flash content may generate files that contain cross-site scripting vulnerabilities. Any site hosting Flash generated by an affected tool could be vulnerable to cross-site scripting.
Applications that generate Flash files (e.g., "save as SWF", "export to SWF", etc.) by using vulnerable templates or by including static Flash content like a controller may automatically insert generic and vulnerable ActionScript into saved files. As a result, all Flash files generated by these affected applications create cross-site scripting vulnerabilities in the domains hosting these files. Furthermore, exploitation of these vulnerabilities would be consistent across all sites using a particular product and vulnerable sites could be identified through a web search.
Any website hosting Flash files generated by an affected product is vulnerable to cross-site scripting in the context of the domain hosting the vulnerable file. Secondary impacts include the ability to spoof or modify web content, access website information such as cookies, or retrieve data from an encrypted HTTPS connection. For a more detailed description of the impact of cross-site scripting vulnerabilities, please see CERT Advisory CA-2000-02.
Upgrade or apply an update or patch
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Adobe||Affected||04 Oct 2007||17 Jan 2008|
|Autodemo||Affected||27 Nov 2007||13 Dec 2007|
|InfoSoft Global||Affected||27 Nov 2007||13 Dec 2007|
|TechSmith Corporation||Affected||27 Nov 2007||16 Jun 2008|
CVSS Metrics (Learn More)
Thanks to Rich Cannings of the Google Security Team for reporting this vulnerability. Stefano Di Paola of Minded Security originally published information about the general problem of cross-site scripting in Flash applications.
This document was written by Chad Dougherty.
- CVE IDs: Unknown
- Date Public: 18 May 2007
- Date First Published: 02 Jan 2008
- Date Last Updated: 16 Jun 2008
- Severity Metric: 5.40
- Document Revision: 49
If you have feedback, comments, or additional information about this vulnerability, please send us email.