10

CVE-2007-6148

Use-after-free vulnerability in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote attackers to execute arbitrary code via an unspecified sequence of Real Time Message Protocol (RTMP) requests.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeConnect Enterprise Server Updatesp2 Version <= 6
AdobeFlash Media Server 2 Version <= 2.0.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.41% 0.943
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=663
http://secunia.com/advisories/28946
http://secunia.com/advisories/28947
Patch
Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb08-03.html
http://www.adobe.com/support/security/bulletins/apsb08-04.html
Patch
http://www.securityfocus.com/bid/27762
http://www.securitytracker.com/id?1019398
http://www.vupen.com/english/advisories/2008/0538/references
http://www.vupen.com/english/advisories/2008/0539