Adobe SVG Viewer 3.0 – ‘postURL’/’getURL’ Restriction Bypass

Adobe SVG Viewer 3.0 – ‘postURL’/’getURL’ Restriction Bypass

漏洞ID 1054217 漏洞类型
发布时间 2003-10-07 更新时间 2003-10-07
图片[1]-Adobe SVG Viewer 3.0 – ‘postURL’/’getURL’ Restriction Bypass-安全小百科CVE编号 N/A
图片[2]-Adobe SVG Viewer 3.0 – ‘postURL’/’getURL’ Restriction Bypass-安全小百科CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23230
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/8785/info

Adobe SVG Viewer (ASV) is prone to an issue in the implementation of the getURL() and postURL() methods. These methods are designed to prevent access to URIs in a foreign domain or local files. However, by using a redirect when calling these methods, it is possible to bypass these restrictions. This could be exploited to read local or remote files, potentially exposing sensitive information and allowing for theft of cookie-based authentication credentials. The attack vectors may vary depending on whether the viewer is operating on its own or used as a plug-in for Internet Explorer (or other browsers).

ASV 3.0 and prior are reported to be prone to this vulnerability. 

getURL(
"rd.asp",
function (oResponse) {
parent.alert(oResponse.content);
}
);

相关推荐: eZ publish articleview.php跨站脚本攻击漏洞

eZ publish articleview.php跨站脚本攻击漏洞 漏洞ID 1107334 漏洞类型 跨站脚本 发布时间 2003-05-16 更新时间 2003-06-16 CVE编号 CVE-2003-0310 CNNVD-ID CNNVD-20030…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享