VYPR

Flash Media Server

by Adobe Inc.

CVEs (16)

  • CVE-2009-3791HigDec 21, 2009
    risk 0.49cvss 7.5epss 0.03

    Unspecified vulnerability in Adobe Flash Media Server (FMS) before 3.5.3 allows attackers to cause a denial of service (resource exhaustion) via unknown vectors.

  • CVE-2011-2132Aug 11, 2011
    risk 0.04cvss epss 0.09

    Adobe Flash Media Server (FMS) before 3.5.7, and 4.x before 4.0.3, allows attackers to cause a denial of service (memory corruption) via unspecified vectors.

  • CVE-2007-6148Feb 13, 2008
    risk 0.01cvss epss 0.08

    Use-after-free vulnerability in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote attackers to execute arbitrary code via an unspecified sequence of Real Time Message Protocol (RTMP) requests.

  • CVE-2007-6149Feb 13, 2008
    risk 0.01cvss epss 0.12

    Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for…

  • CVE-2011-0612May 16, 2011
    risk 0.00cvss epss 0.02

    Adobe Flash Media Server (FMS) before 3.5.6, and 4.x before 4.0.2, allows remote attackers to cause a denial of service (XML data corruption) via unspecified vectors.

  • CVE-2010-3635Nov 10, 2010
    risk 0.00cvss epss 0.06

    Adobe Flash Media Server (FMS) 3.0.x before 3.0.7, 3.5.x before 3.5.5, and 4.0.x before 4.0.1 allows attackers to execute arbitrary code via unspecified vectors, related to a "segmentation fault vulnerability."

  • CVE-2010-3634Nov 10, 2010
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in the edge process in Adobe Flash Media Server (FMS) 3.0.x before 3.0.7, 3.5.x before 3.5.5, and 4.0.x before 4.0.1 allows attackers to cause a denial of service via unknown vectors.

  • CVE-2010-3633Nov 10, 2010
    risk 0.00cvss epss 0.04

    Memory leak in Adobe Flash Media Server (FMS) 3.0.x before 3.0.7, 3.5.x before 3.5.5, and 4.0.x before 4.0.1 allows attackers to cause a denial of service (memory consumption) via unspecified vectors.

  • CVE-2010-2220Aug 11, 2010
    risk 0.00cvss epss 0.02

    Adobe Flash Media Server (FMS) before 3.0.6, and 3.5.x before 3.5.4, allows attackers to cause a denial of service via unspecified vectors, related to an "input validation issue."

  • CVE-2010-2219Aug 11, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Adobe Flash Media Server (FMS) before 3.0.6, and 3.5.x before 3.5.4, allows attackers to cause a denial of service (memory consumption) via unknown vectors.

  • CVE-2010-2218Aug 11, 2010
    risk 0.00cvss epss 0.02

    Adobe Flash Media Server (FMS) before 3.0.6, and 3.5.x before 3.5.4, allows attackers to cause a denial of service via unspecified vectors, related to a "JS method issue."

  • CVE-2010-2217Aug 11, 2010
    risk 0.00cvss epss 0.05

    Adobe Flash Media Server (FMS) before 3.0.6, and 3.5.x before 3.5.4, allows attackers to execute arbitrary code via unspecified vectors, related to a "JS method vulnerability."

  • CVE-2009-3792Dec 21, 2009
    risk 0.00cvss epss 0.04

    Directory traversal vulnerability in Adobe Flash Media Server (FMS) before 3.5.3 allows attackers to load arbitrary DLL files via unspecified vectors.

  • CVE-2009-1365May 1, 2009
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Adobe Flash Media Server (FMS) before 3.0.4 and 3.5.x before 3.5.2, as used in Flash Media Interactive Server and Flash Media Streaming Server, allows remote attackers to execute arbitrary remote procedures within an ActionScript file on the server…

  • CVE-2008-5109Nov 25, 2008
    risk 0.00cvss epss 0.02

    The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software.

  • CVE-2007-6431Feb 13, 2008
    risk 0.00cvss epss 0.05

    Unspecified vulnerability in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote attackers to "take control of the affected system" via unspecified vectors, a different issue than CVE-2007-6148 and CVE-2007-6149.