Vulnerabilities > CVE-2009-1365 - RPC Call Privilege Escalation vulnerability in Adobe Flash Media Server
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in Adobe Flash Media Server (FMS) before 3.0.4 and 3.5.x before 3.5.2, as used in Flash Media Interactive Server and Flash Media Streaming Server, allows remote attackers to execute arbitrary remote procedures within an ActionScript file on the server via RPC requests.
Vulnerable Configurations
Nessus
NASL family | Misc. |
NASL id | ADOBE_FMS_RPC.NASL |
description | The remote host is running Adobe Flash Media Server, an application server for Flash-based applications. The version running on the remote host has an unspecified RPC vulnerability. This can reportedly be exploited to execute remote procedures within an server-side ActionScript file running on the server. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 38700 |
published | 2009-05-07 |
reporter | This script is Copyright (C) 2009-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/38700 |
title | Adobe Flash Media Server RPC Privilege Escalation (APSB09-05) |
code |
|
Seebug
bulletinFamily | exploit |
description | Bugraq ID: 34790 CVE ID:CVE-2009-1365 CNCVE ID:CNCVE-20091365 Adobe Flash Media Server是一款流视频和实时通信领域的解决方案,可提供网上视频直播服务。 Adobe Flash Media Server存在一个未明安全问题,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 目前没有详细漏洞细节提供。 Adobe Flash Media Streaming Server 3.5.1 Adobe Flash Media Server 3.5.1 Adobe Flash Media Server 3.0.3 Adobe Flash Media Server 2.0.5 Adobe Flash Media Server 2.0.4 Adobe Flash Media Server 2.0.3 Adobe Flash Media Server 2.0.2 Adobe Flash Media Server 2.0.1 Adobe Flash Media Server 2.0 Adobe Flash Media Server 3.0 Adobe Flash Media Interactive Server 3.5.1 升级程序: Adobe Flash Media Streaming Server 3.5.1 Adobe FlashMediaServer3.5.exe <a href=http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Wind target=_blank rel=external nofollow>http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Wind</a> ows/FlashMediaServer3.5.exe Adobe FlashMediaServer3.5.tar.gz <a href=http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Linu target=_blank rel=external nofollow>http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Linu</a> x/FlashMediaServer3.5.tar.gz Adobe Flash Media Interactive Server 3.5.1 Adobe FlashMediaServer3.5.exe <a href=http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Wind target=_blank rel=external nofollow>http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Wind</a> ows/FlashMediaServer3.5.exe Adobe FlashMediaServer3.5.tar.gz <a href=http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Linu target=_blank rel=external nofollow>http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Linu</a> x/FlashMediaServer3.5.tar.gz Adobe Flash Media Server 3.5.1 Adobe FlashMediaServer3.5.exe <a href=http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Wind target=_blank rel=external nofollow>http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Wind</a> ows/FlashMediaServer3.5.exe Adobe FlashMediaServer3.5.tar.gz <a href=http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Linu target=_blank rel=external nofollow>http://download.macromedia.com/pub/flashmediaserver/updates/3_5_2/Linu</a> x/FlashMediaServer3.5.tar.gz |
id | SSV:11188 |
last seen | 2017-11-19 |
modified | 2009-05-04 |
published | 2009-05-04 |
reporter | Root |
title | Adobe Flash Media Server未明RPC调用特权提升漏洞 |