Lucene search

[email protected]CVE-2010-4192

HistoryFeb 10, 2011 - 4:00 p.m.

CVE-2010-4192

2011-02-1016:00:13

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-4192

adobe shockwave player

memory corruption

cve-2011-0555

cve-2010-4093

cve-2010-4187

cve-2010-4190

cve-2010-4191

cve-2010-4306

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.06 Low

EPSS

Percentile

93.5%

JSON

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted 3D Assets 0xFFFFFF88 type record that triggers an incorrect memory allocation, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, and CVE-2010-4306.

Affected configurations

NVD

Node

adobeshockwave_playerRange≤11.5.9.615

adobeshockwave_playerMatch1.0

adobeshockwave_playerMatch2.0

adobeshockwave_playerMatch3.0

adobeshockwave_playerMatch4.0

adobeshockwave_playerMatch5.0

adobeshockwave_playerMatch6.0

adobeshockwave_playerMatch8.0

adobeshockwave_playerMatch8.0.196

adobeshockwave_playerMatch8.0.196a

adobeshockwave_playerMatch8.0.204

adobeshockwave_playerMatch8.0.205

adobeshockwave_playerMatch8.5.1

adobeshockwave_playerMatch8.5.1.100

adobeshockwave_playerMatch8.5.1.103

adobeshockwave_playerMatch8.5.1.105

adobeshockwave_playerMatch8.5.1.106

adobeshockwave_playerMatch8.5.321

adobeshockwave_playerMatch8.5.323

adobeshockwave_playerMatch8.5.324

adobeshockwave_playerMatch8.5.325

adobeshockwave_playerMatch9

adobeshockwave_playerMatch9.0.383

adobeshockwave_playerMatch9.0.432

adobeshockwave_playerMatch10.0.0.210

adobeshockwave_playerMatch10.0.1.004

adobeshockwave_playerMatch10.1.0.11

adobeshockwave_playerMatch10.1.0.011

adobeshockwave_playerMatch10.1.1.016

adobeshockwave_playerMatch10.1.4.020

adobeshockwave_playerMatch10.2.0.021

adobeshockwave_playerMatch10.2.0.022

adobeshockwave_playerMatch10.2.0.023

adobeshockwave_playerMatch11.0.0.456

adobeshockwave_playerMatch11.0.3.471

adobeshockwave_playerMatch11.5.0.595

adobeshockwave_playerMatch11.5.0.596

adobeshockwave_playerMatch11.5.1.601

adobeshockwave_playerMatch11.5.2.602

adobeshockwave_playerMatch11.5.6.606

adobeshockwave_playerMatch11.5.7.609

adobeshockwave_playerMatch11.5.8.612

CPENameOperatorVersion
adobe:shockwave_playeradobe shockwave playerle11.5.9.615
adobe:shockwave_playeradobe shockwave playereq1.0
adobe:shockwave_playeradobe shockwave playereq2.0
adobe:shockwave_playeradobe shockwave playereq3.0
adobe:shockwave_playeradobe shockwave playereq4.0
adobe:shockwave_playeradobe shockwave playereq5.0
adobe:shockwave_playeradobe shockwave playereq6.0
adobe:shockwave_playeradobe shockwave playereq8.0
adobe:shockwave_playeradobe shockwave playereq8.0.196
adobe:shockwave_playeradobe shockwave playereq8.0.196a

CPE	Name	Operator	Version
adobe:shockwave_player	adobe shockwave player	le	11.5.9.615
adobe:shockwave_player	adobe shockwave player	eq	1.0
adobe:shockwave_player	adobe shockwave player	eq	2.0
adobe:shockwave_player	adobe shockwave player	eq	3.0
adobe:shockwave_player	adobe shockwave player	eq	4.0
adobe:shockwave_player	adobe shockwave player	eq	5.0
adobe:shockwave_player	adobe shockwave player	eq	6.0
adobe:shockwave_player	adobe shockwave player	eq	8.0
adobe:shockwave_player	adobe shockwave player	eq	8.0.196
adobe:shockwave_player	adobe shockwave player	eq	8.0.196a