CVE-2008-5109
First published: Tue Nov 25 2008(Updated: )
The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Flash Media Server | =3.5 | |
| Adobe Flash Media Server | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2008-5109?
CVE-2008-5109 is considered to be of medium severity due to its potential for unauthorized access to content.
How can I fix CVE-2008-5109?
To fix CVE-2008-5109, ensure that SWF Verification is enabled in your Adobe Flash Media Server settings.
Which versions of Adobe Flash Media Server are affected by CVE-2008-5109?
CVE-2008-5109 affects Adobe Flash Media Server versions 3.0 and 3.5.
What does CVE-2008-5109 allow remote attackers to do?
CVE-2008-5109 allows remote attackers to make copies of video content via stream-capture software.
Is CVE-2008-5109 a widespread vulnerability?
CVE-2008-5109 is notable within the context of media content security, particularly for users of older Adobe Flash Media Server versions.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/tags
- agent/remedy
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/event
- agent/source
- vendor/adobe
- canonical/adobe flash media server
- version/adobe flash media server/3.5
- version/adobe flash media server/3.0