CVE Vulnerabilities

CVE-2008-5109

Published: Nov 25, 2008 | Modified: Nov 26, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software.

Affected Software

Name Vendor Start Version End Version
Flash_media_server Adobe 3.0 (including) 3.0 (including)
Flash_media_server Adobe 3.5 (including) 3.5 (including)

References