Severity: Medium

Description: Flash-based components within SAS^® web applications can be manipulated by the user through specification of an external configuration file.

Potential Impact: An unauthorized user might gain access to data uploaded or provided by authorized users.

Click the Hot Fix tab in this note to access the hot fix for this issue.

Operating System and Release Information

A fix for this issue for SAS Marketing Automation 6.5 is available at:

A fix for this issue for SAS Marketing Optimization 6.5 is available at:

A fix for this issue for SAS Digital Marketing 6.5 is available at:

A fix for this issue for SAS Visual Analytics 7.3 is available at:

A fix for this issue for SAS Flex Application Themes 4.7 is available at:

A fix for this issue for SAS Flex Application Themes 4.6 is available at:

A fix for this issue for SAS Marketing Automation 6.4 is available at:

A fix for this issue for SAS Marketing Optimization 6.4 is available at:

A fix for this issue for SAS Digital Marketing 6.4 is available at:

A fix for this issue for SAS Flex Application Themes 4.5 is available at:

A fix for this issue for SAS Digital Marketing 6.3 is available at:

A fix for this issue for SAS Marketing Automation 6.3 is available at:

A fix for this issue for SAS Marketing Optimization 6.3 is available at:

A fix for this issue for SAS Flex Application Themes 4.3 is available at:

A fix for this issue for SAS Flex Application Themes 4.2 is available at: