CVE-2007-6148

Currently unrated

Key Information:

Vendor: Adobe
Status: Connect Enterprise Server; Flash Media Server 2
Vendor: CVE Published:; 13 February 2008

Summary

Use-after-free vulnerability in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote attackers to execute arbitrary code via an unspecified sequence of Real Time Message Protocol (RTMP) requests.

References

http://www.adobe.com/support/security/bulletins/apsb08-04...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2008/0539

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/28947

third-party-advisoryx_refsource_SECUNIA

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 13, 2008
Vulnerability Reserved
Nov 27, 2007