JD on EP: Flash, Plug and Play, router

« BBC video stats | Main | SWF to QT to MS »

January 15, 2008

Flash, Plug and Play, router

Flash, Plug and Play, router: A news story making the rounds today is headlined "Flash attack could take over your router". Other reports have more moderate headlines, and include the key info "Disabling Adobe's Flash software may not be effective... because other Web technologies may also provide a means to exploit the UPnP flaw." A researcher reveals that the vulnerability of Universal Plug and Play comes from a POST request with custom headers. SWF files are just one way to put together such a request.

Posted by JohnDowdell at January 15, 2008 2:51 PM

JD on EP

This is a historical site. New entries are at blogs.adobe.com/jd. Comments are closed on these old entries.

January 15, 2008

Flash, Plug and Play, router