Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5109

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5109
Last Modified 26 Nov 2008 12:00:00
Published 25 Nov 2008 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5109

Summary

The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software.

Vulnerable Systems

Application

  • Adobe Flash Media Server 3.0

  • Adobe Flash Media Server 3.5


References

CONFIRM - http://www.adobe.com/support/security/advisories/apsa08-11.html

OSVDB - 49952

SECUNIA - 32771


Last Updated: 27 May 2016 10:48:42