Hi Santiago,
* Santiago Garcia Mantinan [EMAIL PROTECTED] [2008-04-21 00:56]:
CVE-2008-1834[0]:
| swfdec_load_object.c in Swfdec before 0.6.4 does not properly restrict
| local file access from untrusted sandboxes, which allows remote
| attackers to read arbitrary files via a crafted Flash
Source: swfdec0.5
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for swfdec0.5.
CVE-2008-1834[0]:
| swfdec_load_object.c in Swfdec before 0.6.4 does not properly restrict
| local file access from untrusted sandboxes, which allows
CVE-2008-1834[0]:
| swfdec_load_object.c in Swfdec before 0.6.4 does not properly restrict
| local file access from untrusted sandboxes, which allows remote
| attackers to read arbitrary files via a crafted Flash file.
Version 0.5 was a development version, we have 0.6.4 on the archives and
3 matches
Mail list logo