17-year-old Iraqi security researcher Abdullah Hussam has identified a cross-site scripting (XSS) vulnerability in a Scalable Inman Flash Replacement (sIFR) implementation thats used on many high-profile websites. The list of impacted websites includes the ones of Adobe, MasterCard, Visa, American Express, Amazon, BlackBerry and a number of US universities. The XSS vulnerability exists in the sIRF tools swf file. Hussam tells me that Adobe has addressed …
Comments are closed.
