Unrated severityNVD Advisory· Published Feb 13, 2008· Updated Apr 23, 2026

CVE-2007-6149

Description

Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.

Affected products

Adobe Inc./Connect Enterprise Server
cpe:2.3:a:adobe:connect_enterprise_server:*:sp2:*:*:*:*:*:*
Range: <=6
Adobe Inc./Flash Media Server 2
cpe:2.3:a:adobe:flash_media_server_2:*:*:*:*:*:*:*:*
Range: <=2.0.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/28946nvdPatchVendor Advisory
secunia.com/advisories/28947nvdPatchVendor Advisory
www.adobe.com/support/security/bulletins/apsb08-04.htmlnvdPatch
www.securityfocus.com/bid/27762nvdPatch
labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
www.adobe.com/support/security/bulletins/apsb08-03.htmlnvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2008/0538/referencesnvd
www.vupen.com/english/advisories/2008/0539nvd
exchange.xforce.ibmcloud.com/vulnerabilities/40471nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.023
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000