Lucene search
HistorySep 18, 2009 - 10:30 a.m.
CVE-2009-3244
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.849 High
EPSS
Percentile
98.5%
Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value.
Affected configurations
Node
adobeshockwave_playerRangeβ€11.5.1.601
ORadobeshockwave_playerMatch1.0
ORadobeshockwave_playerMatch2.0
ORadobeshockwave_playerMatch3.0
ORadobeshockwave_playerMatch4.0
ORadobeshockwave_playerMatch5.0
ORadobeshockwave_playerMatch6.0
ORadobeshockwave_playerMatch8.0
ORadobeshockwave_playerMatch8.0.196
ORadobeshockwave_playerMatch8.0.196a
ORadobeshockwave_playerMatch8.0.204
ORadobeshockwave_playerMatch8.0.205
ORadobeshockwave_playerMatch8.5.1
ORadobeshockwave_playerMatch8.5.1.100
ORadobeshockwave_playerMatch8.5.1.103
ORadobeshockwave_playerMatch8.5.1.105
ORadobeshockwave_playerMatch8.5.1.106
ORadobeshockwave_playerMatch8.5.321
ORadobeshockwave_playerMatch8.5.323
ORadobeshockwave_playerMatch8.5.324
ORadobeshockwave_playerMatch8.5.325
ORadobeshockwave_playerMatch9
ORadobeshockwave_playerMatch9.0.383
ORadobeshockwave_playerMatch9.0.432
ORadobeshockwave_playerMatch10.0.0.210
ORadobeshockwave_playerMatch10.0.1.004
ORadobeshockwave_playerMatch10.1.0.11
ORadobeshockwave_playerMatch10.1.0.011
ORadobeshockwave_playerMatch10.1.1.016
ORadobeshockwave_playerMatch10.1.4.020
ORadobeshockwave_playerMatch10.2.0.021
ORadobeshockwave_playerMatch10.2.0.022
ORadobeshockwave_playerMatch10.2.0.023
ORadobeshockwave_playerMatch11.0.0.456
ORadobeshockwave_playerMatch11.0.3.471
ORadobeshockwave_playerMatch11.5.0.595
ORadobeshockwave_playerMatch11.5.0.596
ORadobeshockwave_playerMatch11.5.2.602
ORadobeshockwave_playerMatch11.5.6.606
ORadobeshockwave_playerMatch11.5.7.609
ORadobeshockwave_playerMatch11.5.8.612
Related
openvas
openvas
Adobe Shockwave Player ActiveX Control BOF Vulnerability
2009-09-24 00:00:00
Adobe Shockwave Player ActiveX Control BOF Vulnerability
2009-09-24 00:00:00
cve
cve
CVE-2009-3244
2009-09-18 10:30:01
seebug
seebug
Adobe ShockWave Player SwDir.dllζ§δ»Άε ζΊ’εΊζΌζ΄
2009-09-22 00:00:00
prion
prion
Heap overflow
2009-09-18 10:30:00
cvelist
cvelist
CVE-2009-3244
2009-09-18 10:00:00
securityvulns
securityvulns
Adobe Shockwave Player Multiple security vulnerabilities
2009-11-05 00:00:00
Security updates available for Shockwave Player
2009-11-05 00:00:00
nessus
nessus
Adobe Shockwave Player <= 11.5.1.601 Multiple Vulnerabilities (APSB09-16) (Mac OS X)
2014-12-22 00:00:00
Shockwave Player <= 11.5.1.601 Multiple Vulnerabilities (APSB09-16)
2009-11-04 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.849 High
EPSS
Percentile
98.5%
Related for NVD:CVE-2009-3244