CVE-2007-6149

CVE Database · CVE-2007-6149

CVE-2007-6149

· N/AModified

CVSS v3.1

N/A

EPSS

11.84%

Published

Feb 13, 2008

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.

Weaknesses (CWE)

CWE-189

Affected Products (2)

adobe · connect_enterprise_servervulnerable

adobe · flash_media_server_2vulnerable

References (20)

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=662

http://secunia.com/advisories/28946

PatchVendor Advisory

http://secunia.com/advisories/28947

PatchVendor Advisory

http://www.adobe.com/support/security/bulletins/apsb08-03.html