Adobe Flash Player fails to properly validate HTTP Referers

Overview

The Adobe Flash Player fails to properly validate HTTP Referers. This may allow an attacker to conduct cross-site request forgery attacks.

Description

Adobe Flash Player is a player for the Flash media format and enables frame-based animations with sound to be viewed within a web browser. HTTP Referer Headers are defined in section 14.36 of RFC 2616:

The Referer[sic] request-header field allows the client to specify, for the server’s benefit, the address (URI) of the resource from which the Request-URI was obtained (the “referrer”, although the header field is misspelled.) The Referer request-header allows a server to generate lists of back-links to resources for interest, logging, optimized caching, etc. It also allows obsolete or mistyped links to be traced for maintenance. The Referer field MUST NOT be sent if the Request-URI was obtained from a source that does not have its own URI, such as input from the user keyboard.

Per Adobe Security Bulletin APSB 07-12, HTTP Referers are not sufficiently validated in Flash Player 8.0.34.0 and earlier.

---

Impact

An attacker may be able to execute cross-site request forgery attacks.

---

Solution

Apply a patch

Updated versions of the affected software have been published to address this issue. Please see the Systems Affected section of this document for more information.

---

Vendor Information

138457

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Adobe __ Affected

Updated: July 12, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

See <http://www.adobe.com/support/security/bulletins/apsb07-12.html&gt; for more details.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23138457 Feedback>).

CVSS Metrics

Group	Score	Vector
Base
Temporal
Environmental

References

• <http://www.adobe.com/support/security/bulletins/apsb07-12.html&gt;
• <http://tools.ietf.org/html/rfc2616#section-14.36&gt;
• <http://secunia.com/advisories/26027/&gt;

Acknowledgements

Thanks to Adobe for information that was used in this report. Adobe credits Daiki Fukumori of Secure Sky Technology, Inc for reporting the vulnerability.

This document was written by Ryan Giobbi.

Other Information

CVE IDs:	CVE-2007-3457
Severity Metric:	4.32 Date Public: