http://www.youtube.com/watch?v=9qZBCH7FGZ0
In this video, I'm showing a simplistic example of the issues I've been talking about. In essence it goes like this: visit my blog and I've got your sensitive details. (I've been taking this code out of my website by now.)
This is a
confidentiality issue. In the mentioned video, I'm just reading the basic accounts details. However, Adobe should fix this since I could even read your Adobe product serials, use them or get them banned by sharing the serials (your account too). Adobe products cost hell a lot of money and the target site is just Adobe at this time. Also, I think I have not said yet that this technique does not always require file uploading, simple "online text editor" could be enough and I actually managed to find my local hospital to be vulnerable and leak sensitive patient details.
And as you are a clever guy, I'm sure you understand that I can also achieve CSRF attacks because I can read the tokens.
This is all possible due to Adobe Flash not respecting MIME types and because it does not use the Same Origin Policy. To be honest, it is not fatal to not change their policy, but at least they need to respect those damn MIME types. If they decide not to change their policy, how about telling the truth to the developers and stop telling us that Flash uses the Same Origin Policy, because it doesn't.