Lucene search
RootSSV:4050HistorySep 14, 2008 - 12:00 a.m.
Adobe Flash Player剪贴板安全漏洞
2008-09-1400:00:00
Root
www.seebug.org
16
0.022 Low
EPSS
Percentile
88.1%
BUGTRAQ ID: 31117
CVE ID:CVE-2008-3873
CNCVE ID:CNCVE-20083873
Adobe Flash Player是一款FLASH媒体文件处理程序。
Adobe Flash Player存在安全漏洞,远程攻击者可以利用漏洞注入任意内容到用户的剪贴板。
构建恶意的SWF文件,诱使用户访问,可导致利用ActionScript代码把恶意的URL注入到剪贴板中,如果点击恶意的链接,目标用户的剪贴板将被劫持,除非浏览器关闭在被释放。
Adobe Flash Player 9.0.48.0
Adobe Flash Player 9.0.47.0
Adobe Flash Player 9.0.45.0
Adobe Flash Player 9.0.31.0
Adobe Flash Player 9.0.28.0
Adobe Flash Player 9.0.115.0
Adobe Flash Player 9
Adobe Flash Player 8.0.35.0
Adobe Flash Player 8.0.34.0
目前没有解决方案提供:
<a href=“http://www.adobe.com/” target=“_blank”>http://www.adobe.com/</a>
可参考如下测试链接:
http://raffon.net/research/flash/cb/test.html
Related
prion
prion
Design/Logic Flaw
2008-08-29 17:41:00
cve
cve
CVE-2008-3873
2008-08-29 17:41:00
seebug
seebug
Adobe Flash Player剪贴板劫持漏洞
2008-10-31 00:00:00
ubuntucve
ubuntucve
CVE-2008-3873
2008-08-29 00:00:00
nessus
nessus
FreeBSD : linux-flashplugin -- multiple vulnerabilities (78f456fd-9c87-11dd-a55e-00163e000016)
2008-10-20 00:00:00
openSUSE 10 Security Update : flash-player (flash-player-5747)
2008-11-12 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 5757)
2008-11-12 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2008-10-15 00:00:00
openvas
openvas
FreeBSD Ports: linux-flashplugin
2008-11-01 00:00:00
Adobe Flash Player Multiple Security Bypass Vulnerabilities (Linux)
2008-10-16 00:00:00
FreeBSD Ports: linux-flashplugin
2008-11-01 00:00:00
redhat
redhat
(RHSA-2008:0945) Critical: flash-plugin security update
2008-10-28 00:00:00
(RHSA-2008:0980) Critical: flash-plugin security update
2008-11-12 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2009-03-10 00:00:00