Lucene search
RootSSV:4379HistoryOct 31, 2008 - 12:00 a.m.
Adobe Flash Player剪贴板劫持漏洞
2008-10-3100:00:00
Root
www.seebug.org
13
0.022 Low
EPSS
Percentile
88.1%
BUGTRAQ ID: 31117
CVE(CAN) ID: CVE-2008-3873
Flash Player是一款非常流行的FLASH播放器。
Adobe Flash Player中ActionScript的System.setClipboard方式允许向剪贴板中添加URL,恶意的SWF文件可能向剪贴板添加URL,导致用户错在不知情的情况下加载攻击者控制的URL。
Adobe Flash Player 9.0.124.0
Adobe
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href=“http://fpdownload.macromedia.com/get/flashplayer/current/install_flash_player_10_linux.tar.gz” target=“_blank”>http://fpdownload.macromedia.com/get/flashplayer/current/install_flash_player_10_linux.tar.gz</a>
RedHat
RedHat已经为此发布了一个安全公告(RHSA-2008:0945-01)以及相应补丁:
RHSA-2008:0945-01:Important: flash-plugin security update
链接:<a href=“https://www.redhat.com/support/errata/RHSA-2008-0945.html” target=“_blank”>https://www.redhat.com/support/errata/RHSA-2008-0945.html</a>
Related
prion
prion
Design/Logic Flaw
2008-08-29 17:41:00
cve
cve
CVE-2008-3873
2008-08-29 17:41:00
seebug
seebug
Adobe Flash Player剪贴板安全漏洞
2008-09-14 00:00:00
ubuntucve
ubuntucve
CVE-2008-3873
2008-08-29 00:00:00
nessus
nessus
FreeBSD : linux-flashplugin -- multiple vulnerabilities (78f456fd-9c87-11dd-a55e-00163e000016)
2008-10-20 00:00:00
openSUSE 10 Security Update : flash-player (flash-player-5747)
2008-11-12 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 5757)
2008-11-12 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2008-10-15 00:00:00
openvas
openvas
FreeBSD Ports: linux-flashplugin
2008-11-01 00:00:00
Adobe Flash Player Multiple Security Bypass Vulnerabilities (Windows)
2008-10-16 00:00:00
Adobe Flash Player Multiple Security Bypass Vulnerabilities (Linux)
2008-10-16 00:00:00
redhat
redhat
(RHSA-2008:0945) Critical: flash-plugin security update
2008-10-28 00:00:00
(RHSA-2008:0980) Critical: flash-plugin security update
2008-11-12 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2009-03-10 00:00:00