Cross-site scripting (XSS) vulnerability in Macromedia Flash ad user tracking capability allows remote attackers to insert arbitrary Javascript via the clickTAG field.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flash | Macromedia | * | * |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-April/004514.html
- http://marc.info/?l=bugtraq\u0026m=105033712615013\u0026w=2
- http://www.macromedia.com/support/flash/ts/documents/clicktag_security.htm
- http://www.securiteam.com/securitynews/5XP0B0U9PE.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-April/004514.html
- http://marc.info/?l=bugtraq\u0026m=105033712615013\u0026w=2
- http://www.macromedia.com/support/flash/ts/documents/clicktag_security.htm
- http://www.securiteam.com/securitynews/5XP0B0U9PE.html