PT-2004-2494 · Adobe · Flash Messaging Server

Luigi Auriemma

Published

2004-12-31

Updated

2016-10-18

CVE-2004-1586

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Flash Messaging Server version 5.2.0g (rev 1.1.2)

Description The issue allows remote attackers to stay connected by ignoring disconnecting commands such as "shutdown" from the server.

Recommendations For Flash Messaging Server version 5.2.0g (rev 1.1.2), consider implementing a workaround to enforce disconnections, as the current implementation can be bypassed. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1586

Affected Products

Flash Messaging Server

PT-2004-2494 · Adobe · Flash Messaging Server

CVE-2004-1586

Related Identifiers

Affected Products

References · 4