Adobe Flex 3 History Management historyFrame.html XSS

medium Nessus Plugin ID 33220

Synopsis

The remote web server contains HTML documents that are affected by a cross-site scripting vulnerability.

Description

The remote host contains one or more HTML documents associated with Adobe Flex 3's History Management Feature and affected by a DOM-based cross-site scripting vulnerability. Due to its failure to sanitize user input, an attacker may be able to leverage this issue to inject arbitrary HTML and script code into a user's browser to be executed within the security context of the affected site, possibly by using JavaScript code flow manipulation techniques.

Solution

Replace the affected file(s) with an instance of 'historyFrame.html' from the Flex 3.0.2 update as discussed in the vendor advisory above.

See Also

http://blog.watchfire.com/wfblog/2008/06/javascript-code.html

https://www.adobe.com/support/security/bulletins/apsb08-14.html

Plugin Details

Severity: Medium

ID: 33220

File Name: adobe_flex_apsb08-14.nasl

Version: 1.16

Type: remote

Published: 6/18/2008

Updated: 4/7/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.8

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Information

CPE: cpe:/a:adobe:flex_builder, cpe:/a:adobe:flex_sdk

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Ease: No exploit is required

Patch Publication Date: 6/17/2008

Reference Information

CVE: CVE-2008-2640

BID: 29778

CWE: 79

Secunia: 30746