[WEB SECURITY] Poking new holes with Flash cross domain policy files

Stefan Esser sesser at hardened-php.net
Thu Oct 19 13:01:30 EDT 2006


Hi,

I released a mini article today that covers the danger that arises for
web applications because of the design flaws in the cross domain policy
verification of the Flash player.

You can read it here:
http://www.hardened-php.net/library/poking_new_holes_with_flash_crossdomain_policy_files.html

Yours,
Stefan Esser
Hardened-PHP Project

----------------------------------------------------------------------------
The Web Security Mailing List: 
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/archive/
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]



More information about the websecurity mailing list