Adobe Flash Media Server < 3.0.5 / 3.5.3 Multiple Vulnerabilities (APSB09-18)
Critical Nessus Plugin ID 43390
SynopsisThe remote media server is affected by multiple vulnerabilities.
DescriptionThe remote host is running Adobe Flash Media Server, an application server for Flash-based applications.
The version running on the remote host is earlier than version 3.0.5 or 3.5.3. Such versions are potentially affected by the following vulnerabilities :
- A resource exhaustion vulnerability can lead to a denial of service. (CVE-2009-3791)
- A directory traversal vulnerability can lead to FMS loading arbitrary DLLs present on the server.
SolutionUpgrade to Flash Media Server 3.0.5 / 3.5.3 or later.