CVE-2010-0128

2010-05-13T17:30:00
ID CVE-2010-0128
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T19:51:00

Description

Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation. Per: http://www.adobe.com/support/security/bulletins/apsb10-12.html

'Adobe recommends users of Adobe Shockwave Player 11.5.6.606 and earlier versions update to Adobe Shockwave Player 11.5.7.609'