CVE-2011-2461 PoC — Adobe Flex SDK跨站脚本漏洞

Source

https://github.com/u-maxx/magento-swf-patched-CVE-2011-2461

Associated Vulnerability

Title:Adobe Flex SDK跨站脚本漏洞 (CVE-2011-2461)
Description:Adobe Flex SDK 4.6之前的4.x版本以及3.x版本中存在跨站脚本漏洞。远程攻击者可以借助与不同域的模块下载相关的向量注入任意web脚本或者HTML。

Description

Patched version of the uploader.swf and uploaderSingle.swf to fix CVE-2011-2461

Readme

# magento-swf-patched-CVE-2011-2461
Patched version of the uploader.swf and uploaderSingle.swf to fix CVE-2011-2461

More info about the vulnerable .swf files in the Magento's core can be found here - https://packetstormsecurity.com/files/131376/Magento-eCommerce-Vulnerable-Adobe-Flex-SDK.html

The main reason CVE-2011-2461 is best explained by @Mindedsecurity http://blog.mindedsecurity.com/2015/03/the-old-is-new-again-cve-2011-2461-is.html thanks to @sneak_ & @_ikki

Files have been patched with the official Adobe patch tool (Action I) https://helpx.adobe.com/flash-builder/kb/flex-security-issue-apsb11-25.html


You can also check your SWF files with ParrotNG (https://github.com/ikkisoft/ParrotNG) and patch them by yourself with the official Adobe patch tool.

File Snapshot


 [4.0K]  /data/pocs/b624dce4e757e118824a70d2322c7170a08cb834
├── [ 770]  README.md
└── [4.0K]  skin
    └── [4.0K]  adminhtml
        └── [4.0K]  default
            └── [4.0K]  default
                └── [4.0K]  media
                    ├── [177K]  uploaderSingle.swf
                    └── [177K]  uploader.swf

5 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!