Skip to main content
P
phurley_mpmercy
Participant
May 11, 2010
Question

FMS 3.5 Vulnerabilities

  • May 11, 2010
  • 1 reply
  • 760 views

This is the output from our college's annual network vulnerability scan. The scan revealed a critical level vulnerability related to our Flash Media Server related to the RTMP protocol. Here’s the snippet from the company that does the scan:


The remote host is running Adobe's Flash Media Server, an application server for Flash-based applications. The Edge server component included with the version of Flash Media Server installed on the remote host contains several integer overflow and memory corruption errors that can be triggered when parsing specially-crafted Real Time Message Protocol (RTMP) packets. An unauthenticated remote attacker can leverage these issues to crash the affected service or execute arbitrary code with SYSTEM-level privileges (under Windows), potentially resulting in a complete compromise of the affected host.

Is this a known issue? Any thoughts on how to address it? BTW, I'm a video guy not a sys admin, so be gentle.

Thanks.

Peter

    This topic has been closed for replies.

    1 reply

    Asa_-_FMS
    Adobe Employee
    Asa_-_FMS
    Adobe Employee
    May 11, 2010

    Adobe will respond to this with the same response we offer to any such security vulns.

    Please email me awhilloc@adobe.com (as I'm the security lead for FMS) and we'll work with you to reproduce the vulnerabilities as listed.  If they're verified we'll fix the bug in a security release in exchange for listed credit for identifying the weakness and being responsible within the security community and not zero-daying the community by keeping the issue confidential until resolved.

    FMS release does have many similar security operations performed on it, but all such actions are by their nature imperfect and new issues can and will be found, hence the boilerplate above.  I can't without contractual agreement break into what's done today, but I'm interested to discuss what you've found directly.  So please do email and we can follow up on this offlist.


    Asa Whillock

    awhiloc@adobe.com

    Asa_-_FMS
    Adobe Employee
    Asa_-_FMS
    Adobe Employee
    May 11, 2010

    My last email listed was wrong, you'd think I would be able to spell my own last name - it has two L's awhilloc@adobe.com

    P
    phurley_mpmercyAuthor
    Participant
    May 11, 2010

    Thanks Asa,

    Our web team is going to dig up some more info on the scan methodology and get that to you. Is there anything specific they should be looking for?

    Thanks for the quick response.

    Peter

    Terms & ConditionsAccessibility statement
    Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices