메뉴 건너뛰기

GREATUSER

cve

CVE-2018-6014

관리자 2018.01.25 04:00 조회 수 : 52

Subsonic v6.1.3 has an insecure allow-access-from domain="*" Flash cross-domain policy that allows an attacker to retrieve sensitive user information via a read request. To exploit this issue, an attacker must convince the user to visit a web site loaded with a SWF file created specifically to steal user data.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6014
번호 제목 글쓴이 날짜 조회 수
512 CVE-2017-16600 관리자 2018.01.25 57
511 CVE-2017-16602 관리자 2018.01.25 49
510 CVE-2017-16603 관리자 2018.01.25 57
» CVE-2018-6014 관리자 2018.01.25 52
508 CVE-2018-6013 관리자 2018.01.25 141
507 CVE-2017-1000416 관리자 2018.01.25 53
506 CVE-2018-0849 관리자 2018.01.25 52
505 CVE-2018-0862 관리자 2018.01.25 49
504 CVE-2018-0845 관리자 2018.01.25 58
503 CVE-2017-1000417 관리자 2018.01.25 53
502 CVE-2018-0848 관리자 2018.01.25 63
501 CVE-2018-6009 관리자 2018.01.25 142
500 CVE-2018-6010 관리자 2018.01.25 58
499 CVE-2018-6000 관리자 2018.01.25 64
498 CVE-2018-5999 관리자 2018.01.25 51
위로