CVE-2008-6061

Published Feb 5, 2009

Last updated 6 years ago

CVSS info 4.3

Overview

Description: Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-79

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C11D412A-0201-4176-91A8-93444E94195B",
            "versionEndIncluding": "4.0.2"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E86D271-5B53-4C7D-BA1C-46516E1F1A38"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8B18921-92CF-487D-B102-41F836A3119D"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DB95AA6-3FCB-4E86-8E33-2AD50C457CD7"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E4865C6-744C-4A57-947E-8117AC87FFF9"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0768ED2A-933E-4543-9307-97FE687A32E7"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1052762B-CCF2-4EC1-A741-32514A53F0F4"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED138D91-590C-4266-A0F0-4CA43921CB9D"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3A2B0E4-D3A7-4CD5-83EA-7807142FCB48"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89324473-49C8-4583-A6A7-31787301E035"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3C1DBA5-187F-46EC-A30A-4B2763EF4864"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38C81F88-2E48-495F-8031-19652FC74FFF"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78992310-54A2-4C98-9DFF-35975C3D2169"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:2.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D33350D9-137C-4D27-ACE2-76B8963C33C3"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A01BE71F-BB0B-4B11-A71E-1C4854F90E47"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:3.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E5EF497-056A-4018-9330-290DFAFF3835"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:3.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80EE90A4-A306-4BA1-92FD-A63C0B14836D"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:3.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AB3FF22-32D0-42FA-A7E0-15D67509041F"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:3.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAFD2913-2104-42F3-8EC0-E3C389203483"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:3.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6F80614-B77C-4C72-92B1-F1C3857F17DD"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:4.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "463C9BEA-3706-4985-8F14-71D9A741073A"
          },
          {
            "criteria": "cpe:2.3:a:techsmith:camtasia_studio:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "952ED6B9-B3B9-4788-9A43-AC87C32002B6"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References