Adobe Flash Media server < 3.5.6 / 4.0.2 Multiple Vulnerabilities (APSB11-11)
Medium Nessus Network Monitor Plugin ID 5924
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running Adobe Flash Media server.
Versions of Adobe FLash Media Server earlier than 3.5.6 or 4.0.2 are potentially affected by multiple vulnerabilities :
- A memory corruption issue exists due to a race condition in the TLS extension code provided by the bundled version of OpenSSL. (CVE-2010-3864)
- An unspecified error relating to processing certain XML content could lead to a denial of service. (CVE-2011-0612)
SolutionUpgrade to Flash Media Server 3.5.6, 4.0.2, or later.