Macromedia Flash Media Server Administration Service Crafted Packet Remote DoS

high Nessus Plugin ID 20302

Language:

Synopsis

The remote service is prone to a remote denial of service attack.

Description

The remote host appears to be using Flash Media Server.

The version of Flash Media Server installed on the remote host is affected by a flaw in its administration server that causes it to crash if it receives a single character. The administration server is used to remotely administer Flash Media Server, and this flaw can be used by an attacker to disable access to this service.

Solution

Limit access to this port to trusted users.

Plugin Details

Severity: High

ID: 20302

File Name: flash_mediaserver_admin_dos.nasl

Version: 1.20

Type: remote

Family: Denial of Service

Published: 12/14/2005

Updated: 7/11/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 12/7/2005

Reference Information

CVE: CVE-2005-4216

BID: 15822

Detections

Analytics