| VID |
12079 |
| Severity |
30 |
| Port |
1111 |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Flash Media server is vulnerable to a denial of service vulnerability in its administration service. Macromedia Flash Media Server versions 1.5 and 2.0 are vulnerable to a denial of service attack, caused by a vulnerability in its administration server. By sending a malformed request with a single character to TCP port 1111, a remote attacker could cause the affected service to crash.
* References:
http://www.macromedia.com/devnet/security/security_zone/mpsb05-11.html
http://www.ipomonis.com/advisories/Flash_media_server_2.txt
http://secunia.com/advisories/17978
http://securitytracker.com/id?1015346
http://www.frsirt.com/english/advisories/2005/2865
* Platforms Affected:
Macromedia Flash Media Server 1.5, 2.0
Microsoft Windows Any version
Linux Any version |
| Recommendation |
No upgrade or patch available as of December 2005.
As a workaround, restrict access to trusted hosts only. For details, please see the Macromedia Security Bulletin MPSB05-11 at http://www.macromedia.com/devnet/security/security_zone/mpsb05-11.html |
| Related URL |
CVE-2005-4216 (CVE) |
| Related URL |
15822 (SecurityFocus) |
| Related URL |
23563 (ISS) |
|
