Deutsche Version (DE_DE)
English version (EN_US)
Test Methods ( Detailed Overview )
Here is a list of every test performed by Web Scan Service.
Acrobat Connect SWF Possible Cross-Site ScriptingRemediation Task
Check server configurationWASC ClassificationInformation Disclosure: Information LeakageAffected ProductsAdobe Flash Player Technical DescriptionIf your website is hosting a SWF file, it may Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.
Fix RecommendationPlease use of the following libraries http://code.google.com/p/flash-validators/*
Technical DescriptionIf your website is hosting a SWF file, it may Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.
Fix RecommendationPlease use of the following libraries http://code.google.com/p/flash-validators/*
Please use of the following libraries http://code.google.com/p/flash-validators/*
