A number of authoring tools for Flash content may generate files that contain cross-site scripting vulnerabilities. Any site hosting Flash generated by an affected tool could be vulnerable to cross-site scripting.
Applications that generate Flash files (e.g., "save as SWF", "export to SWF", etc.) by using vulnerable templates or by including static Flash content like a controller may automatically insert generic and vulnerable ActionScript into saved files. As a result, all Flash files generated by these affected applications create cross-site scripting vulnerabilities in the domains hosting these files. Furthermore, exploitation of these vulnerabilities would be consistent across all sites using a particular product and vulnerable sites could be identified through a web search.
Any website hosting Flash files generated by an affected product is vulnerable to cross-site scripting in the context of the domain hosting the vulnerable file. Secondary impacts include the ability to spoof or modify web content, access website information such as cookies, or retrieve data from an encrypted HTTPS connection. For a more detailed description of the impact of cross-site scripting vulnerabilities, please see CERT Advisory CA-2000-02.
Upgrade or apply an update or patch
Thanks to Rich Cannings of the Google Security Team for reporting this vulnerability. Stefano Di Paola of Minded Security originally published information about the general problem of cross-site scripting in Flash applications.
This document was written by Chad Dougherty.
|Date First Published:||2008-01-02|
|Date Last Updated:||2008-06-16 13:36 UTC|