CAPEC-182: Flash Injection
ID
CAPEC-182
Typical Severity
Medium
Likelihood Of Attack
High
Status
Draft
An attacker tricks a victim to execute malicious flash content that executes commands or makes flash calls specified by the attacker. One example of this attack is cross-site flashing, an attacker controlled parameter to a reference call loads from content specified by the attacker.