CVE-2009-1365

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2009-1365
Unspecified vulnerability in Adobe Flash Media Server (FMS) before 3.0.4 and 3.5.x before 3.5.2, as used in Flash Media Interactive Server and Flash Media Streaming Server, allows remote attackers to execute arbitrary remote procedures within an ActionScript file on the server via RPC requests.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://www.securityfocus.com/bid/34790 Patch
http://www.adobe.com/support/security/bulletins/apsb09-05.html Patch Vendor Advisory
http://secunia.com/advisories/34878
http://www.securitytracker.com/id?1022148
http://www.vupen.com/english/advisories/2009/1234
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:flash_media_server:3.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server:2.0.3:*:*:*:*:*:*:*
Information

Published : 2009-05-01 10:30

Updated : 2009-05-18 22:34

NVD link : CVE-2009-1365

Mitre link : CVE-2009-1365

JSON object : View

CWE
NVD-CWE-noinfo
Advertisement

dedicated server usa
Products Affected

adobe

  • flash_media_server