SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (Generic)  >   Adobe Flash Vendors:   Adobe Systems Incorporated
(Sun Issues Fix) Adobe Flash Player Plugin Lets Remote Users Injection Arbitrary HTTP Header Data
SecurityTracker Alert ID:  1018171
SecurityTracker URL:  http://securitytracker.com/id/1018171
CVE Reference:   CVE-2006-5330   (Links to External Site)
Date:  May 31 2007
Impact:   Disclosure of user information, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 7.x, 8.x, 9.x; Flash Player Plugin 9.0.16 for Windows; 7.0.63 for Linux; possibly other versions
Description:   A vulnerability was reported in the Adobe Flash Player Plugin. A remote user can inject arbitrary HTTP header data.

A remote user can invoke the addRequestHeader() function to add arbitrary header values to a Flash HTTP request.

A remote user can supply a specially crafted value to the contentType attribute to set arbitrary header values in a Flash HTTP request.

This allows a remote user to generate arbitrary HTTP requests and conduct cross-site request forgery (CSRF) attacks.

The vendor was notified on September 18, 2006.

Marc Bevand of Rapid7 discovered this vulnerability.

The original advisory is available at:

http://www.rapid7.com/advisories/R7-0026.jsp
Impact:   A remote user can conduct cross-site request forgery attacks.
Solution:   Sun has issued the following fixes.

SPARC Platform

* Solaris 10 with patch 125332-01 or later

x86 Platform

* Solaris 10 with patch 125333-01 or later

This will upgrade the Flash Player to version 7.0 r67.

The Sun advisory is available at:

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102932-1
Vendor URL:  www.adobe.com/support/security/bulletins/apsb06-18.html (Links to External Site)
Cause:   Access control error, Input validation error
Underlying OS:   UNIX (Solaris - SunOS)

Message History:   This archive entry is a follow-up to the message listed below.
Oct 18 2006 Adobe Flash Player Plugin Lets Remote Users Injection Arbitrary HTTP Header Data


 Source Message Contents
Date:  Thu, 31 May 2007 00:38:43 -0400
Subject:  Security Vulnerability in Adobe Flash Player May Allow Unauthorized Header Injection into HTTP Requests



http://sunsolve.sun.com/search/document.do?assetkey=1-26-102932-1

CVE-2006-5330


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2012, SecurityGlobal.net LLC