ReviveAdserver Improper Access Control Vulnerability - CVE-2015-7369

The default Flash cross-domain policy (crossdomain.xml) in Revive Adserver before 3.2.2 does not restrict access cross domain access which allows remote attackers to conduct cross domain attacks via unspecified vectors.