Adobe Shockwave Player内存破坏漏洞(CVE-2014-0500)

BUGTRAQ ID: 65490 CVECAN ID: CVE-2014-0500 Adobe Shockwave Player是播放使用Macromedia和Adobe Director制作的网页内容的软件。 Adobe Shockwave Player 12.0.7.148及之前版本在实现上存在远程内存破坏漏洞，攻击者可利用此漏洞在受影响应用用户上下文中执行任意代码。 0 Adobe Shockwave Player 12.0.7.148 厂商补丁： Adobe ----- Adobe已经为此发布了一个安全公告（apsb14-06）以及相应补丁: apsb14-06：Adobe...

Adobe Shockwave 11.6.7.637 contains multiple exploitable vulnerabilities

Overview Adobe Shockwave Player 11.6.7.637 and earlier versions on the Windows and Macintosh operating systems contain critical vulnerabilities that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Adobe Macromedia Shockwave Player is...

Adobe Shockwave Player Duplicate LSCM Records Memory Corruption (APSB10-25; CVE-2010-4089)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A memory corruption vulnerability has been identified in Adobe Shockwave Player. The vulnerability is due t...

Adobe Shockwave Player - 'rcsL chunk' Memory Corruption

Abysssec Inc Public Advisory 1 Advisory information Title : Adobe Shockwave player rcsL chunk memory corruption Version : Adobe Shockwave player 11.5.8.612 latest on writing time Discovery : http://www.abysssec.com Vendor : http://www.adobe.com Impact : Critical Contact : shahin at abysssec.com ,...

Adobe Shockwave Director tSAC Chunk Parsing Memory Corruption (CVE-2010-2866)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A remote code execution vulnerability has been identified in Adobe Shockwave Player. The vulnerability is d...

Adobe Shockwave Player IML32.dll Memory Corruption (APSB10-20; CVE-2010-2864)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A memory corruption vulnerability has been identified in Adobe Shockwave Player. The vulnerability is due t...

Adobe Shockwave Player rcsL Chunk Symbol Access Violations (APSB10-20; CVE-2010-2882)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A memory corruption vulnerability has been identified in Adobe Shockwave Player. The vulnerability is due t...

Adobe Shockwave Player CASt Parsing Memory Corruption (APSB10-20; CVE-2010-2868)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A memory corruption vulnerability has been identified in Adobe Shockwave Player. The vulnerability is due t...

Adobe Shockwave Player DIR Files PAMI Chunk Code Execution (APSB10-12; CVE-2010-1292)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A remote code execution vulnerability has been identified in Adobe Shockwave Player. An attacker can exploi...

Integer overflow

Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation...

CVE-2010-0128

CVE-2010-0128 affects Adobe Shockwave Player < 11.5.7.609 and Adobe Director

VUPEN Security Research - Adobe Shockwave 3D Two Remote Code Execution Vulnerabilities (CVE-2010-1284)

VUPEN Security Research - Adobe Shockwave 3D Two Code Execution Vulnerabilities CVE-2010-1284 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Over 450 million Internet-enabled desktops have installed Adobe Shockwave Player. These people now have access to some of th...

[CORE-2010-0405] Adobe Director Invalid Read

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Adobe Director DIRAPI.DLL Invalid Read Vulnerability 1. Advisory Information Title: Adobe Director DIRAPI.DLL Invalid Read Vulnerability Advisory Id: CORE-2010-0405...

Adobe Shockwave Player 11.5.6.606 (DIR) Multiple Memory Vulnerabilities

No description provided by source. / Title: Adobe Shockwave Player 11.5.6.606 DIR Multiple Memory Vulnerabilities Vendor: Adobe Systems Incorporated Product web page: http://www.adobe.com Summary: Over 450 million Internet-enabled desktops have installed Adobe Shockwave Player. These people now...

Adobe Director DIRAPI.DLL Memory Corruption Vulnerability

Advisory ID Internal CORE-2010-0405 1. Advisory Information Title: Adobe Director DIRAPI.DLL Memory Corruption Vulnerability Advisory Id: CORE-2010-0405 Advisory URL:http://www.coresecurity.com/content/adobe-director-memory-corruption Date published: 2010-05-11 Date of last update: 2010-05-11...

Adobe Shockwave Player 11.5.6.606 (DIR) Multiple Memory Vulnerabilities

Summary Over 450 million Internet-enabled desktops have installed Adobe Shockwave Player. These people now have access to some of the best the Web has to offer - including dazzling 3D games and entertainment, interactive product demonstrations, and online learning applications. Shockwave Player...