The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 102932 Security Vulnerability in Adobe Flash Player May Allow Unauthorized Header Injection into HTTP Requests

Guest Author
Product: Solaris 10 Operating System

Security vulnerabilities in the Adobe Flash Player product shipped with Solaris 10 may allow remote users who create applications that are viewed with the Flash Player to generate unauthorized HTTP requests from the affected host by inserting arbitrary HTTP headers. This could assist in activities such as HTTP Request Splitting attacks.

These issues are described in the following documents:

Avoidance: Patch
State: Resolved
First released: 30-May-2007

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.