An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A UI Redress (or Clickjacking) vulnerability exists. This issue has been resolved by adding a feature that enables Connect administrators to protect users from UI redressing (or clickjacking) attacks.
References
| Link | Resource |
|---|---|
| http://www.securityfocus.com/bid/101838 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1039799 | Third Party Advisory VDB Entry |
| https://helpx.adobe.com/security/products/connect/apsb17-35.html | Vendor Advisory |
| http://www.securityfocus.com/bid/101838 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1039799 | Third Party Advisory VDB Entry |
| https://helpx.adobe.com/security/products/connect/apsb17-35.html | Vendor Advisory |
Configurations
History
21 Nov 2024, 03:07
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://www.securityfocus.com/bid/101838 - Third Party Advisory, VDB Entry | |
| References | () http://www.securitytracker.com/id/1039799 - Third Party Advisory, VDB Entry | |
| References | () https://helpx.adobe.com/security/products/connect/apsb17-35.html - Vendor Advisory |
Information
Published : 2017-12-09 06:29
Updated : 2024-11-21 03:07
NVD link : CVE-2017-11290
Mitre link : CVE-2017-11290
CVE.ORG link : CVE-2017-11290
JSON object : View
Products Affected
adobe
- connect
CWE
CWE-1021
Improper Restriction of Rendered UI Layers or Frames