Skip to navigation Skip to main content Skip to footer

Flash security restrictions bypass: File upload by URLRequest

05 August 2015

By NCC Group Publication Archive

Research Cyber Security Technical advisories

Vulnerability Summary

Title:             Flash security restrictions bypass: File upload by URLRequest

Release Date:   13 March 2015

Reference:         NCC00765

Discoverer:        Soroush Dalili

Vendor:            Adobe

Vendor Reference:  PSIRT-3146

Systems Affected:  Adobe Flash Player <=16.0.0.305, <=13.0.0.269, 11.2.202.442

CVE Reference:     CVE-2015-0340

Risk:              Low

Status:           Fixed

Download our technical advisory

NCC Group Publication Archive

NCC Group Publication Archive