Flash '.swf' File Detection
Info Nessus Network Monitor Plugin ID 4674
SynopsisThe remote web server is hosting .swf files.
DescriptionThe remote web server is hosting .swf files.
Distributing such files over the web can be done, but the webmaster should make sure that they do not contain confidential data. Flash '.swf' files are easily decompiled into source code using tools such as Flare (www.nowrap.de/flare.html).
SolutionEnsure that confidential data is not present within the '.swf' file. Note: PVS only reports on the first occurence of this item on a web server. Parse your entire web source for similar occurrences.