Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Adobe Flash Player - SANS07C4/SANS07C1 - SANS Internet Storm Center SANS ISC InfoSec Forums

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Adobe Flash Player - SANS07C4/SANS07C1
The plot thickens - if we run an audit scan again the host with Nessus it only showed that Adobe 13 was installed (it was put back on by a user) and nothing relating to Adobe Flash was exploitable.

Im just wondering what the SANS07C4 is referring to:

ANS07C4: Adobe Flash Player and earlier vulnerable to CSRF attack
Adobe Flash Player and earlier insufficiently validates HTTP Referer headers, which potentially allows remote attackers to conduct a CSRF attack via a crafted SWF file.

As only Adobe Flash player 13 is detected as below:

Nessus found the following instances of Flash Player installed on the
remote host :

- ActiveX control (for Internet Explorer) :



4 Posts
As far as SANS is concerned, maybe "SANS07C4" stands for "SANS 2007 Critical Control 4" referring to the SANS Critical Controls. But then again, they are not really that specific.

I think your hunch that this stands for "ANS" not "SANS" makes sense.

3321 Posts
ISC Handler
Hi Johannes,

Thank you very much for your reply - appreciate it.

Unfortunately it line broke me off - when copy pasting!

Best Regards,


4 Posts

Sign Up for Free or Log In to start participating in the conversation!