Adobe : Security Vulnerabilities, CVEs, Published In 2008 (CSRF)
Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote attackers to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigateToURL function to send a SOAP message to a UPnP control point, as demonstrated by changing the primary DNS server.
Max CVSS
4.3
EPSS Score
0.56%
Published
2008-04-02
Updated
2017-09-29
1 vulnerabilities found