Lucene search
MitreCVE-2008-5109HistoryNov 25, 2008 - 11:30 p.m.
CVE-2008-5109
2008-11-2523:30:00
CWE-16
mitre
web.nvd.nist.gov
26
adobe flash media server
fms 3.0
swf verification
rtmpe
rtmpte
video content
remote attackers
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.003
Percentile
71.9%
The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software.
Affected configurations
Node
adobeflash_media_serverMatch3.0
ORadobeflash_media_serverMatch3.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | flash_media_server | 3.0 | cpe:2.3:a:adobe:flash_media_server:3.0:*:*:*:*:*:*:* |
| adobe | flash_media_server | 3.5 | cpe:2.3:a:adobe:flash_media_server:3.5:*:*:*:*:*:*:* |
Related
openvas
openvas
Adobe Flash Media Server Video Stream Capture Security Issue
2008-11-27 00:00:00
Adobe Flash Media Server Video Stream Capture Security Issue
2008-11-27 00:00:00
prion
prion
Default configuration
2008-11-25 23:30:00
nvd
nvd
CVE-2008-5109
2008-11-25 23:30:00
cvelist
cvelist
CVE-2008-5109
2008-11-25 23:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.003
Percentile
71.9%
Related for CVE-2008-5109