Vulnerabilities > CVE-2005-3901 - Unspecified vulnerability in Macromedia Flash Communication Server 1.0/1.5

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

macromedia

NVD

Published: 2005-11-29

Updated: 2008-09-05

Summary

Macromedia Flash Communication Server MX 1.0 and 1.5 does not sufficiently validate certain RTMP data, which allows attackers to cause a denial of service (instability or crash), as demonstrated using an alpha release build of Flash Player 8.5 (build 133).

Vulnerable Configurations

Part	Description	Count
Application	Macromedia Macromedia Flash Communication Server 1.0 Macromedia Flash Communication Server 1.5	2

References

http://secunia.com/advisories/17612
http://securitytracker.com/id?1015219
http://www.macromedia.com/devnet/security/security_zone/mpsb05-09.html
http://www.osvdb.org/20869
http://www.securityfocus.com/bid/15437