{"edition": 1, "title": "FlexCast Audio Video Streaming Server Unspecified Issue", "bulletinFamily": "software", "published": "2005-06-06T08:53:15", "lastseen": "2017-04-28T13:20:13", "history": [], "modified": "2005-06-06T08:53:15", "reporter": "OSVDB", "hash": "11a815944c816c2b693e8d236a1f860e85590282a291cb4120f7730404c0baec", "viewCount": 0, "href": "https://vulners.com/osvdb/OSVDB:17126", "description": "## Solution Description\nUpgrade to version 2.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor URL: 2005-06-05\n[Secunia Advisory ID:15441](https://secuniaresearch.flexerasoftware.com/advisories/15441/)\n[CVE-2005-1897](https://vulners.com/cve/CVE-2005-1897)\n", "affectedSoftware": [], "type": "osvdb", "hashmap": [{"key": "affectedSoftware", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "524bfd9b5c290557e48a7e7a3f1753df"}, {"key": "cvss", "hash": "2bdabeb49c44761f9565717ab0e38165"}, {"key": "description", "hash": "6d92817250866c0db4ffcde57c5ea7dc"}, {"key": "href", "hash": "13dbeeccee9cc9eff58bec4c7a701f3c"}, {"key": "modified", "hash": "dc58daa7fd2fda1eced49dfcdba1eb54"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "dc58daa7fd2fda1eced49dfcdba1eb54"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "955b328dc7cd615c13af5464c9183464"}, {"key": "title", "hash": "0f7cfd99acf2a9d21fe45d43199232f2"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "references": [], "objectVersion": "1.2", "enchantments": {"score": {"value": 5.3, "vector": "NONE", "modified": "2017-04-28T13:20:13"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-1897"]}, {"type": "nessus", "idList": ["FLEXCAST_SERVER_TERMINAL_AUTH.NASL"]}], "modified": "2017-04-28T13:20:13"}, "vulnersScore": 5.3}, "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/", "score": 10.0}, "cvelist": ["CVE-2005-1897"], "id": "OSVDB:17126"}
{"cve": [{"lastseen": "2019-05-29T18:08:14", "bulletinFamily": "NVD", "description": "Unknown vulnerability in FlexCast Audio Video Streaming Server before 2.0 has unknown impact and attack vectors.", "modified": "2008-09-05T20:50:00", "id": "CVE-2005-1897", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1897", "published": "2005-06-09T04:00:00", "title": "CVE-2005-1897", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}], "nessus": [{"lastseen": "2019-12-13T07:26:38", "bulletinFamily": "scanner", "description": "The remote host is running FlexCast, an audio/video streaming server. \n\nAccording to its banner, the version installed on the remote host\nsuffers from a vulnerability in suppliers / terminal authentication. \nWhile details are as-yet unavailable, it is likely the flaw is\nremotely exploitable.", "modified": "2019-12-02T00:00:00", "id": "FLEXCAST_SERVER_TERMINAL_AUTH.NASL", "href": "https://www.tenable.com/plugins/nessus/18429", "published": "2005-06-07T00:00:00", "title": "FlexCast Server Terminal Authentication Unspecified Remote Issue", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description) {\n script_id(18429);\n script_version(\"1.14\");\n\n script_cve_id(\"CVE-2005-1897\");\n script_bugtraq_id(13858);\n\n script_name(english:\"FlexCast Server Terminal Authentication Unspecified Remote Issue\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host contains a multimedia streaming application that is\naffected by an authentication vulnerability.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running FlexCast, an audio/video streaming server. \n\nAccording to its banner, the version installed on the remote host\nsuffers from a vulnerability in suppliers / terminal authentication. \nWhile details are as-yet unavailable, it is likely the flaw is\nremotely exploitable.\" );\n # https://web.archive.org/web/20060702022820/http://archives.neohapsis.com/archives/apps/freshmeat/2005-05/0021.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?4e1b0316\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to FlexCast 2.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:U/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2005/06/07\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2005/06/06\");\n script_cvs_date(\"Date: 2018/06/13 18:56:27\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_end_attributes();\n\n script_summary(english:\"Checks for terminal authentication vulnerability in FlexCast Server\");\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n script_copyright(english:\"This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.\");\n script_dependencies(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 8000, 8001);\n\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:8000);\n\n\n# Check the version number in the banner.\nbanner = get_http_banner(port:port);\nif (\n banner && \n banner =~ \"^Server: FlexCast Server/[01]\\.\"\n) {\n security_hole(port);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}]}