Security Concerns SWF Interpreter FLASH Security Model Constructs SandBoxes and allowDomain Cross Domain Policy
Can execute JavaScript when embedded in a HTML page and viewed from inside a Browser. Can forge binary requests and HTTP Requests. Can executes external Flash movies and other data Natively plays audio and video data Displays minimal HTML code inside text fields
Direct Access URI: http://host/movie.swf (as written in Address Bar) Generated HTML :