6 matches found
Adobe Shockwave Player Multiple Remote Code Execution Vulnerabilities - Feb 2011
This host is installed with Adobe Shockwave Player and is prone to multiple remote code execution vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeshockwaveplayermultcodeexecvulnfeb11.nasl 5424 2017-02-25 16:52:36Z teissa $ Adobe Shockwave Player Multiple Remote Code Execution...
Security update available for Shockwave Player
Security update available for Shockwave Player Release date: February 8, 2011 Vulnerability identifier: APSB11-01 CVE number: CVE-2010-2587, CVE-2010-2588, CVE-2010-2589, CVE-2010-4092, CVE-2010-4093, CVE-2010-4187, CVE-2010-4188, CVE-2010-4189, CVE-2010-4190, CVE-2010-4191, CVE-2010-4192,...
Memory corruption
Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, and CVE-2010-4192...
CVE-2010-4093
Adobe Shockwave Player before 11.5.9.620 is vulnerable to remote code execution and memory corruption (CVE-2010-4093 among others) due to an integer overflow/heap memory handling issue when parsing certain records (e.g., FFFFFF88). Publicly documented advisories (APSB11-01) describe a specific ov...
CVE-2010-4192
Adobe Shockwave Player before 11.5.9.620 is affected by CVE-2010-4192, among others, via a crafted Director 3D Assets 0xFFFFFF88 record that triggers an incorrect memory allocation. This can lead to arbitrary code execution or memory corruption and, in some cases, a denial of service. The vulnera...
Shockwave Player < 11.5.9.620 (APSB11-01)
The remote Windows host contains a version of Adobe's Shockwave Player that is earlier than 11.5.9.620. Such versions are potentially affected by the following issues : - Several unspecified errors exist in the 'dirapi.dll' module that may allow arbitrary code execution. CVE-2010-2587,...