Описание
Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 6 (включая)Версия до 2.0.4 (включая)
Одно из
cpe:2.3:a:adobe:connect_enterprise_server:*:sp2:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_media_server_2:*:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.31104
Средний
10 Critical
CVSS2
Дефекты
CWE-189
Связанные уязвимости
github
почти 4 года назад
Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.
EPSS
Процентиль: 97%
0.31104
Средний
10 Critical
CVSS2
Дефекты
CWE-189