Support ⇒ Security ⇒ Adobe Flash Design Flaw ⇒ Community Forums ⇒ CPG Dragonfly™ CMS
Forum IndexSecurity

Adobe Flash Design Flaw Reply to topic


Report

Source

Opinions?

Pro_News CM™ - Content Management for Dragonfly CMS™

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Linux / 1.3.39 - 2.4.9 / 5.5.42 - 5.6.16 / 5.4.37 - 5.5.11 / 9.4


Dont use flash for interactive content!!!!!!!!!!!!! EX: Forums, login scripts, download/upload scripts etc. Been saying that for years.

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Multiple Setups


This issue is so normal.
If a website allows me to upload javascript, the issue is still the same.
Read cookie and forward cookie to malicious domain, voila!

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Fedora 25 / Apache 2.4.27 / MariaDB 10.1.26 / PHP 7.1.10 / Mercurial


True.

But are the content-type header checks enough to protect against an overloaded GIF, jpg, pdf, zip carrying a flash - or other - payload?

Pro_News CM™ - Content Management for Dragonfly CMS™

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Linux / 1.3.39 - 2.4.9 / 5.5.42 - 5.6.16 / 5.4.37 - 5.5.11 / 9.4


No, but i figured out another way.
Encrypt login cookie with IP address. If IP doesn't match cookie can't be decrypted and login fails.

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Fedora 25 / Apache 2.4.27 / MariaDB 10.1.26 / PHP 7.1.10 / Mercurial


That seems brilliant! Like most great ideas, seems obvious - after you see it Wink

How big a change though?

I think that only stops a 3rd party domain messing with the webserver. Good to do. But user's Windoze system still vulnerable from the 3rd party site - but what's new? And it looks as if Abode Flash 10 prevents most of the latter by implementing an exact match domain name check.

Unfortunate no clear indication if Adobe's exact domain name match treats a sub-domain as a match or mismatch. If mismatch then I was thinking simply moving coppermine album, etc., to a sub-domain such as uploads.{your_domainname} would prevent that attack vector.

Pro_News CM™ - Content Management for Dragonfly CMS™

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Linux / 1.3.39 - 2.4.9 / 5.5.42 - 5.6.16 / 5.4.37 - 5.5.11 / 9.4

All times are UTC


Jump to: