CVE-2008-5109 Information

Description

The default configuration of Adobe Flash Media Server (FMS) 3.0 does not enable SWF Verification for (1) RTMPE and (2) RTMPTE sessions which makes it easier for remote attackers to make copies of video content via stream-capture software.

Reference

http://secunia.com/advisories/32771 http://www.adobe.com/support/security/advisories/apsa08-11.html http://www.osvdb.org/49952