Flash Media < 3.0.4/3.5.2 Privilege Escalation
High Nessus Network Monitor Plugin ID 5011
SynopsisThe remote host is vulnerable to a remote 'privilege escalation' flaw
DescriptionThe remote host is running Flash Media server. This version of Flash Media server is vulnerable to a flaw wherein malicious script code can be injected and executed via an RPC call. An attacker, exploiting this flaw, would need access to the application port and the ability to send malformed requests to the service port. An attacker, exploiting this flaw, would be able to escalate privileges on the remote system.
SolutionAdobe has released Flash Media Server versions 3.04 and 3.5.2 to address these flaws