CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-6149

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1600%
EPSS Percentile9.96th
Published2008年2月13日
Last Modified2026年4月23日

Vulnerability Description

Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.

Affected Platforms (CPE)

📦
Adobe

Connect Enterprise Server

<= 6
📦
Adobe

Flash Media Server 2

<= 2.0.4

References & Advisories

🔗 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=662
🔗 http://secunia.com/advisories/28946
🔗 http://secunia.com/advisories/28947
🔗 http://www.adobe.com/support/security/bulletins/apsb08-03.html
🔗 http://www.adobe.com/support/security/bulletins/apsb08-04.html
🔗 http://www.securityfocus.com/bid/27762
🔗 http://www.securitytracker.com/id?1019399
🔗 http://www.vupen.com/english/advisories/2008/0538/references

関連する脆弱性情報

CVE-2007-614810.0

Use-after-free vulnerability in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before...

CVE-2007-643110.0

Unspecified vulnerability in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote at...

CVE-2020-272659.8

KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregato...

CVE-2020-272639.1

KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregato...