Vulnerability Details CVE-2005-3901
Macromedia Flash Communication Server MX 1.0 and 1.5 does not sufficiently validate certain RTMP data, which allows attackers to cause a denial of service (instability or crash), as demonstrated using an alpha release build of Flash Player 8.5 (build 133).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.1%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/17612
- http://securitytracker.com/id?1015219
- http://www.macromedia.com/devnet/security/security_zone/mpsb05-09.html
- http://www.osvdb.org/20869
- http://www.securityfocus.com/bid/15437
- http://secunia.com/advisories/17612
- http://securitytracker.com/id?1015219
- http://www.macromedia.com/devnet/security/security_zone/mpsb05-09.html
- http://www.osvdb.org/20869
- http://www.securityfocus.com/bid/15437
Products affected by CVE-2005-3901
-
cpe:2.3:a:macromedia:flash_communication_server:1.0
-
cpe:2.3:a:macromedia:flash_communication_server:1.5