Lucene search

[email protected]CVE-2007-6149

HistoryFeb 13, 2008 - 9:00 p.m.

CVE-2007-6149

2008-02-1321:00:00

CWE-189

[email protected]

web.nvd.nist.gov

cve-2007-6149

adobe flash media server

connect enterprise server

integer overflow

remote code execution

rtmp

security vulnerability

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.144 Low

EPSS

Percentile

95.7%

JSON

Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.

CPENameOperatorVersion
adobe:connect_enterprise_serveradobe connect enterprise serverle6
adobe:flash_media_server_2adobe flash media server 2le2.0.4

CPE	Name	Operator	Version
adobe:connect_enterprise_server	adobe connect enterprise server	le	6
adobe:flash_media_server_2	adobe flash media server 2	le	2.0.4

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=662

secunia.com/advisories/28946

secunia.com/advisories/28947

www.adobe.com/support/security/bulletins/apsb08-03.html

www.adobe.com/support/security/bulletins/apsb08-04.html

www.securityfocus.com/bid/27762

www.securitytracker.com/id?1019399

www.vupen.com/english/advisories/2008/0538/references

www.vupen.com/english/advisories/2008/0539

exchange.xforce.ibmcloud.com/vulnerabilities/40471

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.144 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2007-6149

securityvulns2 prion2 cve1 seebug1 nessus1