CVE-2007-6637 - Cross-Site Scripting (XSS) vulnerability in Adobe Flash Player

Publication

2008-01-04

Last modification

2017-09-29

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.

Description

Adobe Dreamweaver and Acrobat Connect include pre-generated SWF files that are prone to cross-site scripting vulnerabilities.An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.The affected SWF files are included with Dreamweaver CS3 and Acrobat Connect. However, the applications themselves are not affected.

Solution

The vendor released advisories and updates to address these issues. Please see the references for more information. Apple Mac OS X Server 10.5 Apple Security Update 2008-003 Server (PPC) http://www.apple.com/support/downloads/securityupdate2008003serverppc. html Apple Security Update 2008-003 Server (Universal) http://www.apple.com/support/downloads/securityupdate2008003serveruniv ersal.html Apple Mac OS X 10.5 Apple Security Update 2008-003 (Intel) http://www.apple.com/support/downloads/securityupdate2008003intel.html Apple Security Update 2008-003 (PPC) http://www.apple.com/support/downloads/securityupdate2008003ppc.html Apple Mac OS X Server 10.4.11 Apple Security Update 2008-003 Server (PPC) http://www.apple.com/support/downloads/securityupdate2008003serverppc. html Apple Security Update 2008-003 Server (Universal) http://www.apple.com/support/downloads/securityupdate2008003serveruniv ersal.html Apple Mac OS X 10.4.11 Apple Security Update 2008-003 (Intel) http://www.apple.com/support/downloads/securityupdate2008003intel.html Apple Security Update 2008-003 (PPC) http://www.apple.com/support/downloads/securityupdate2008003ppc.html Apple Mac OS X 10.5.1 Apple Security Update 2008-003 (Intel) http://www.apple.com/support/downloads/securityupdate2008003intel.html Apple Security Update 2008-003 (PPC) http://www.apple.com/support/downloads/securityupdate2008003ppc.html Apple Mac OS X Server 10.5.1 Apple Security Update 2008-003 Server (PPC) http://www.apple.com/support/downloads/securityupdate2008003serverppc. html Apple Security Update 2008-003 Server (Universal) http://www.apple.com/support/downloads/securityupdate2008003serveruniv ersal.html Apple Mac OS X 10.5.2 Apple Security Update 2008-003 (Intel) http://www.apple.com/support/downloads/securityupdate2008003intel.html Apple Security Update 2008-003 (PPC) http://www.apple.com/support/downloads/securityupdate2008003ppc.html Apple Mac OS X Server 10.5.2 Apple Security Update 2008-003 Server (PPC) http://www.apple.com/support/downloads/securityupdate2008003serverppc. html Apple Security Update 2008-003 Server (Universal) http://www.apple.com/support/downloads/securityupdate2008003serveruniv ersal.html

Exploit

Attackers can exploit these issues by enticing an unsuspecting user to follow a malicious URI.

Classification

CWE-79 - Cross-Site Scripting (XSS)

Risk level (CVSS AV:N/AC:M/Au:N/C:N/I:P/A:N)

Medium

4.3

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

OVAL definition

{
    "accepted": "2010-09-06T04:15:31.119-04:00",
    "class": "vulnerability",
    "contributors": [
        {
            "name": "Aharon Chernin",
            "organization": "SCAP.com, LLC"
        }
    ],
    "description": "Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to \"pre-generated SWF files\" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect.  NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.",
    "family": "unix",
    "id": "oval:org.mitre.oval:def:9828",
    "status": "accepted",
    "submitted": "2010-07-09T03:56:16-04:00",
    "title": "Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to \"pre-generated SWF files\" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect.  NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.",
    "version": "6"
}

Affected Products