Clipboard attack vulnerability in ActionScript in Adobe Flash Player (dpkg)ID: oval:org.secpod.oval:def:18003 | Date: (C)2014-05-08 (M)2021-09-11 |
Class: VULNERABILITY | Family: unix |
The host is installed with Adobe Flash Player 9.0.124.0 and earlier and is prone to clipboard attack vulnerability. A flaw is present in the System.setClipboard method in ActionScript, which fails to handle a populated clipboard. Successful exploitation could allow attackers populate the clipboard with a URL that is difficult to delete and does not require user interaction to populate the clipboard.
Product: |
Adobe Flash Player |