FreeBSD : swfdec -- exposure of sensitive information (5ef12755-1c6c-11dd-851d-0016d325a0ed)
Medium Nessus Plugin ID 32145
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionSecunia reports :
A vulnerability has been reported in swfdec, which can be exploited by malicious people to disclose sensitive information.
The vulnerability is caused due to swfdec not properly restricting untrusted sandboxes from reading local files, which can be exploited to disclose the content of arbitrary local files by e.g. tricking a user into visiting a malicious website.
SolutionUpdate the affected package.