3 matches found
CVE-2008-6061
Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter...
CVE-2008-6061
CVE-2008-6061 affects TechSmith Camtasia Studio
Camtasia Studio Pre-generated SWF File csPreloader Parameter Unspecified Arbitrary Code Execution
Camtasia Studio, an application for recording videos, is installed on the remote host. The version of Camtasia Studio on the remote host reportedly generates Flash SWF files that themselves allow loading of an arbitrary Flash file via the 'csPreloader' parameter, which could lead to cross-site...