Shockwave crossite scripting
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Shockwave crossite scripting
updated since 24.07.2006
Published:
17.08.2006
Source:
BUGTRAQ
SecurityVulns ID:
6391
Type:
client
Level:
6
/10
Description:
Crossite access to cookies and document data is possible.
Original document
Amit Klein (AKsecurity)
,
Technical note by Amit Klein: "Sending arbitrary HTTP requests with Flash 7/8 (+IE 6.0)"
(
17.08.2006
)
Amit Klein (AKsecurity)
,
Technical note: under some conditions, it's possible to steal HTTP credentials using Flash
(
15.08.2006
)
Amit Klein (AKsecurity)
,
Sending multipart/form-data requests from Flash (with arbitrary headers)
(
11.08.2006
)
Amit Klein (AKsecurity)
,
Write-up by Amit Klein: "Forging HTTP request headers with Flash"
(
25.07.2006
)
spammeanddie_(at)_msn.com
,
Crtical Shockwave Embeded XSS Execution
(
24.07.2006
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
