Vulnerability in Adobe Flash Media Server 3.0 Allows Unauthorized Content Access
CVE-2008-5109

Currently unrated

Key Information:

Vendor: Adobe
Status: Flash Media Server
Vendor: CVE Published:; 25 November 2008

Summary

The default settings of Adobe Flash Media Server 3.0 do not enable SWF Verification for RTMPE and RTMPTE sessions. This oversight can be exploited by remote attackers who may utilize stream-capture software to unlawfully replicate video content, thereby compromising the security and integrity of media assets.

References

http://secunia.com/advisories/32771

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/49952

vdb-entryx_refsource_OSVDB

http://www.adobe.com/support/security/advisories/apsa08-1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 25, 2008