8 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF files created by Adobe Dreamweaver, when the Insert Flash Video feature is used, allows remote attackers to inject arbitrary web script or HTML via an asfunction: URI in the skinName parameter. NOTE: this may...
CVE-2008-6062
CVE-2008-6062 describes an XSS vulnerability in ActionScript within arbitrary Shockwave Flash (SWF) files created by Adobe Dreamweaver when the Insert Flash Video feature is used. An attacker can inject arbitrary script/HTML via an asfunction: URI in the skinName parameter. The note mentions pote...
Gentoo Security Advisory GLSA 200801-07 (netscape-flash)
The remote host is missing updates announced in advisory GLSA 200801-07. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: linux-flashplugin
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: linux-flashplugin
The remote host is missing an update to the system as announced in the referenced advisory. VID 562cf6c4-b9f1-11dc-a302-000102cc8983 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
SuSE 10 Security Update : flash-player (ZYPP Patch Number 4856)
This flash player update to version 9.0.115.0 fixes several security problems. In the worst case an attacker could potentially have flash-player execute arbitrary code via specially crafted files. CVE-2007-4324 / CVE-2007-4768 / CVE-2007-5275 / CVE-2007-6242 / CVE-2007-6243 / CVE-2007-6244 /...
CVE-2007-6244
Adobe Flash Player (Flash-plugin) vulnerable to cross-site scripting via asfunction: and navigateToURL in the ActiveX/Plug-in context. Affected: Flash Player 9.x up to 9.0.48.0 and 8.x up to 8.0.35.0. Root cause: input validation issues when processing SWF parameters and asfunction: usage, per RH...
Flash Player < 7.0.73.0 / 9.0.115.0 Multiple Vulnerabilities (APSB07-20)
According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several which could allow for arbitrary code execution by means of a malicious SWF file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...