Vulnerabilities > CVE-2008-5109 - Configuration vulnerability in Adobe Flash Media Server 3.0/3.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software. Guide for enabling SWF verification = http://kb.adobe.com/selfservice/viewContent.do?externalId=kb405456&sliceId=2
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |