XSS Vulnerabilities in Adobe Presenter 6 and 7 by Adobe
CVE-2008-3515

Currently unrated

Key Information:

Vendor: Adobe
Status: Presenter
Vendor: CVE Published:; 13 August 2008

Summary

Adobe Presenter versions 6 and 7 prior to 7.0.1 are susceptible to multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web scripts or HTML into the application through unspecified vectors, particularly affecting viewer.swf and loadflash.js files. The exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of unsuspecting users.

References

http://secunia.com/advisories/31432

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2008/2322

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/30615

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Aug 13, 2008
Vulnerability Reserved
Aug 7, 2008