| Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them. |
|
 |
|
|
|
vulnerability 9495
Adobe Flash: file reading
Synthesis of the vulnerability
| An attacker can create a malicious Flash application, which indicates file fragments to a CIFS/SMB share. |
Severity: 2/4.
Creation date: 04/03/2010.
|
Description of the vulnerability
A Flash application can be conceived with two modes
- "Access local files only" : no network access, excepted a CIFS server on the same local network
- "Access network only" : no local access
An application is thus not allowed to transfer data from user's computer to the internet.
In "local files only" mode, the application can use the URLLoader class to read a local file, or a file located on a CIFS/SMB share.
An application can therefore use URLLoader to read a file located on victim's computer. This file for example contains "hello". The application can then try to read "\\1.2.3.4\public\hello", where "1.2.3.4" is a CIFS server owned by the attacker. The "hello" file does not exist on the CIFS share, so this generates an error which is logged.
The attacker can then read logs of his CIFS server, in order to obtain data fragments ("hello") coming from victim's computer.
An attacker can therefore create a malicious Flash application, which indicates file fragments to a CIFS/SMB share. |
Complete Vigil@nce bulletin
Characteristics
Title: Adobe Flash: file reading.
Keywords: Access Adobe CIFS Flash SMB URLLoader file reading.
Identifiers: BID-38517, VIGILANCE-VUL-9495.
|
Information sources
Supplements
Computer vulnerabilities tracking service
The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.
The Vigil@nce vulnerability database contains several thousand vulnerabilities.
This bulletin is published by the Vigil@nce team, which tracks computer vulnerabilities impacting systems and applications.
Computer vulnerability database
|
