Unrated severityNVD Advisory· Published Feb 5, 2009· Updated Apr 23, 2026
CVE-2008-6061
CVE-2008-6061
Description
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter.
Affected products
22cpe:2.3:a:techsmith:camtasia_studio:*:*:*:*:*:*:*:*+ 21 more
- cpe:2.3:a:techsmith:camtasia_studio:*:*:*:*:*:*:*:*range: <=4.0.2
- cpe:2.3:a:techsmith:camtasia_studio:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:3.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:techsmith:camtasia_studio:4.0.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- docs.google.com/ViewnvdExploit
- secunia.com/advisories/28311nvdVendor Advisory
- www.kb.cert.org/vuls/id/249337nvdUS Government Resource
- www.securityfocus.com/archive/1/485722/100/100/threadednvd
- www.securityfocus.com/bid/27107nvd
- www.vupen.com/english/advisories/2008/0066nvd
News mentions
0No linked articles in our index yet.