Ravens PHP Scripts

Konqueror Flash Player Plug-in Vulnerability
Date: Thursday, June 14, 2007 @ 13:55:01 PDT
Topic: Security


SECUNIA ADVISORY ID: SA25662

VERIFY ADVISORY: http://secunia.com/advisories/25662/

CRITICAL: Moderately critical

IMPACT: Exposure of sensitive information

WHERE: >From remote

SOFTWARE: Konqueror 3.x - http://secunia.com/product/3166/

DESCRIPTION: A vulnerability has been reported in Konqueror, which can be exploited by malicious people to disclose potentially sensitive information.



The vulnerability is caused due to an unspecified error within the interaction between Konqueror and the Adobe Flash Player plug-in, which may result in key presses being leaked to a Flash applet. This can be exploited to disclose potentially sensitive information. The vulnerability is related to: SA24877

SOLUTION: Visit trusted sites only. Do not use the Adobe Flash plug-in.

PROVIDED AND/OR DISCOVERED BY: Reported in a Red Hat advisory. Originally reported for Opera by Mark Hills.

ORIGINAL ADVISORY: https://rhn.redhat.com/errata/RHSA-2007-0494.html

OTHER REFERENCES: SA24877: http://secunia.com/advisories/24877/






This article comes from Ravens PHP Scripts
http://www.ravenphpscripts.com

The URL for this story is:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=2965