Launchpad.net

CVE 2007-4324

ActionScript 3 (AS3) in Adobe Flash Player 9.0.47.0, and other versions and other 9.0.124.0 and earlier versions, allows remote attackers to bypass the Security Sandbox Model, obtain sensitive information, and port scan arbitrary hosts via a Flash (SWF) movie that specifies a connection to make, then uses timing discrepancies from the SecurityErrorEvent error to determine whether a port is open or not. NOTE: 9.0.115.0 introduces support for a workaround, but does not fix the vulnerability.

See the

CVE page on Mitre.org for more details.

References

MISC: http://scan.flashsec.org/
BID: 25260
SREASON: 2995
CONFIRM: http://www.adobe.com/s...
REDHAT: RHSA-2007:1126
SECTRACK: 1019116
SECUNIA: 28157
SECUNIA: 28161
CERT: TA07-355A
GENTOO: GLSA-200801-07
SECUNIA: 28570
SUSE: SUSE-SA:2007:069
SECUNIA: 28213
SUNALERT: 238305
SECUNIA: 30507
CONFIRM: http://www.adobe.com/d...
CONFIRM: http://www.adobe.com/s...
SECUNIA: 32270
REDHAT: RHSA-2008:0945
SECUNIA: 32448
SUSE: SUSE-SR:2008:025
SECUNIA: 32759
REDHAT: RHSA-2008:0980
SECUNIA: 32702
SUNALERT: 248586
SECUNIA: 33390
CONFIRM: http://support.avaya.c...
CONFIRM: http://support.avaya.c...
VUPEN: ADV-2007-4258
VUPEN: ADV-2008-1724
VUPEN: ADV-2008-2838
CONFIRM: http://kb.adobe.com/se...
CONFIRM: http://support.nortel....
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20070809 Design flaw i...

Launchpad.net

CVE 2007-4324

Related bugs

References