CVE-2008-2640 - OpenCVE

Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-detection-with-history/history/historyFrame.html, (2) express-installation-with-history/history/historyFrame.html, or (3) no-player-detection-with-history/history/historyFrame.html in templates/html-templates/. NOTE: Firefox 2.0 and possibly other browsers prevent exploitation.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Adobe	Flex Flex Builder

Configuration 1 [-]

OR	cpe:2.3:a:adobe:flex:3.0.1::sdk:::::
	cpe:2.3:a:adobe:flex_builder:3:::::::*

References

Link	Resource
http://blog.watchfire.com/wfblog/2008/06/javascript-code.html	Exploit
http://secunia.com/advisories/30746	Patch Vendor Advisory
http://securitytracker.com/id?1020301
http://www.adobe.com/support/security/bulletins/apsb08-14.html	Patch
http://www.securityfocus.com/bid/29778	Patch
http://www.vupen.com/english/advisories/2008/1862
https://exchange.xforce.ibmcloud.com/vulnerabilities/43150

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2008-06-18T19:29:00

Updated: 2017-08-07T12:57:01

Reserved: 2008-06-09T00:00:00

Link: CVE-2008-2640

JSON object: View

NVD Information

Status : Modified

Published: 2008-06-18T19:41:00.000

Modified: 2017-08-08T01:31:12.060

Link: CVE-2008-2640

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-06-17T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-detection-with-history/history/historyFrame.html, (2) express-installation-with-history/history/historyFrame.html, or (3) no-player-detection-with-history/history/historyFrame.html in templates/html-templates/. NOTE: Firefox 2.0 and possibly other browsers prevent exploitation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.adobe.com/support/security/bulletins/apsb08-14.html"}, {"name": "1020301", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1020301"}, {"name": "adobeflex-historymanagement-xss(43150)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43150"}, {"name": "30746", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30746"}, {"name": "ADV-2008-1862", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1862"}, {"tags": ["x_refsource_MISC"], "url": "http://blog.watchfire.com/wfblog/2008/06/javascript-code.html"}, {"name": "29778", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/29778"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-2640", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-detection-with-history/history/historyFrame.html, (2) express-installation-with-history/history/historyFrame.html, or (3) no-player-detection-with-history/history/historyFrame.html in templates/html-templates/. NOTE: Firefox 2.0 and possibly other browsers prevent exploitation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.adobe.com/support/security/bulletins/apsb08-14.html", "refsource": "CONFIRM", "url": "http://www.adobe.com/support/security/bulletins/apsb08-14.html"}, {"name": "1020301", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1020301"}, {"name": "adobeflex-historymanagement-xss(43150)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43150"}, {"name": "30746", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30746"}, {"name": "ADV-2008-1862", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1862"}, {"name": "http://blog.watchfire.com/wfblog/2008/06/javascript-code.html", "refsource": "MISC", "url": "http://blog.watchfire.com/wfblog/2008/06/javascript-code.html"}, {"name": "29778", "refsource": "BID", "url": "http://www.securityfocus.com/bid/29778"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-2640", "datePublished": "2008-06-18T19:29:00", "dateReserved": "2008-06-09T00:00:00", "dateUpdated": "2017-08-07T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:flex:3.0.1:*:sdk:*:*:*:*:*", "matchCriteriaId": "DDB08AFF-83FA-4D5D-8DDF-70AC8AC8275D", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:flex_builder:3:*:*:*:*:*:*:*", "matchCriteriaId": "8764CF7F-6DD8-4C3A-9251-70B86FD76B24", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-detection-with-history/history/historyFrame.html, (2) express-installation-with-history/history/historyFrame.html, or (3) no-player-detection-with-history/history/historyFrame.html in templates/html-templates/. NOTE: Firefox 2.0 and possibly other browsers prevent exploitation."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en Flex 3 History Management en Adobe Flex 3.0.1 SDK, Flex Builder 3 y las aplicaciones generadas con \u00e9stos, permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del marcador identificador al (1) client-side-detection-with-history/history/historyFrame.html, (2) express-installation-with-history/history/historyFrame.html, o (3) no-player-detection-with-history/history/historyFrame.html en templates/html-templates/. NOTA: Firefox 2.0 y probablemente otros navegadores evitan la explotaci\u00f3n."}], "id": "CVE-2008-2640", "lastModified": "2017-08-08T01:31:12.060", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2008-06-18T19:41:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://blog.watchfire.com/wfblog/2008/06/javascript-code.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/30746"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1020301"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.adobe.com/support/security/bulletins/apsb08-14.html"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/29778"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/1862"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43150"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}