The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software.
References
Link | Resource |
---|---|
http://secunia.com/advisories/32771 | Vendor Advisory |
http://www.adobe.com/support/security/advisories/apsa08-11.html | Patch Vendor Advisory |
http://www.osvdb.org/49952 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:13:55
Updated: 2022-10-03T16:13:55
Reserved: 2022-10-03T00:00:00
Link: CVE-2008-5109
JSON object: View
NVD Information
Status : Analyzed
Published: 2008-11-25T23:30:00.517
Modified: 2008-11-26T05:00:00.000
Link: CVE-2008-5109
JSON object: View
Redhat Information
No data.
CWE