CVE-2007-6149

Currently unrated

Key Information:

Vendor: Adobe
Status: Connect Enterprise Server; Flash Media Server 2
Vendor: CVE Published:; 13 February 2008

Summary

Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.

References

http://www.securitytracker.com/id?1019399

vdb-entryx_refsource_SECTRACK

http://www.adobe.com/support/security/bulletins/apsb08-04...

x_refsource_CONFIRM

http://labs.idefense.com/intelligence/vulnerabilities/dis...

third-party-advisoryx_refsource_IDEFENSE

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 13, 2008
Vulnerability Reserved
Nov 27, 2007