ISS X-Force Database: adobe-connect-edge-bo(40471): Adobe Connect Enterprise Server Edge Server component buffer overflow

Adobe Connect Enterprise Server Edge Server component buffer overflow

adobe-connect-edge-bo (40471)

High Risk

Description:

Adobe Connect Enterprise Server and Adobe Flash Media Server are vulnerable to a heap-based buffer overflow, caused by integer overflow errors in the Edge Server component when parsing RTMP messages. By sending specially-crafted packets to TCP Port 1935 or 19350, a remote attacker could overflow a buffer and execute arbitrary code on the system with SYSTEM privileges or cause the server to crash.

Platforms Affected:

Adobe, Connect Enterprise Server 6
Adobe, Flash Media Server 2.0.4

Remedy:

For Adobe Connect Enterprise Server:
Refer to APSB08-04 for patch, upgrade or suggested workaround information. See References.

For Adobe Flash Media Server:
Refer to APSB08-03 for patch, upgrade or suggested workaround information. See References.

Consequences:

Gain Access

References:

APSB08-03, Update available to address Flash Media Server security issues at http://www.adobe.com/support/security/bulletins/apsb08-03.html.
APSB08-04, Update available to address Adobe Connect Enterprise Server security issues at http://www.adobe.com/support/security/bulletins/apsb08-04.html.
iDefense Labs PUBLIC ADVISORY: 02.12.08, Adobe Flash Media Server 2 Multiple Integer Overflow Vulnerabilities at http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=662.
BID-27762: Adobe Flash Media Server and Connect Enterprise Server Multiple Remote Security Vulnerabilities
CVE-2007-6149: Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation.
SA28946: Adobe Flash Media Server Edge Server Multiple Vulnerabilities
SA28947: Adobe Connect Enterprise Server Flash Media Server Vulnerabilities
SECTRACK ID: 1019399: Adobe Flash Media Server RTMP Integer Overflows Let Remote Users Execute Arbitrary Code
VUPEN/ADV-2008-0538: Adobe Flash Media Server Remote Command Execution Vulnerabilities
VUPEN/ADV-2008-0539: Adobe Connect Enterprise Server Remote Code Execution Vulnerabilities

Reported:

Feb 12, 2008

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page