Adobe Shockwave Player Multiple Remote Code Execution Vulnerabilities - Feb 2011

This host is installed with Adobe Shockwave Player and is prone to multiple remote code execution vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeshockwaveplayermultcodeexecvulnfeb11.nasl 5424 2017-02-25 16:52:36Z teissa $ Adobe Shockwave Player Multiple Remote Code Execution...

Security update available for Shockwave Player

Security update available for Shockwave Player Release date: February 8, 2011 Vulnerability identifier: APSB11-01 CVE number: CVE-2010-2587, CVE-2010-2588, CVE-2010-2589, CVE-2010-4092, CVE-2010-4093, CVE-2010-4187, CVE-2010-4188, CVE-2010-4189, CVE-2010-4190, CVE-2010-4191, CVE-2010-4192,...

Memory corruption

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, CVE-2010-4192, and CVE-2010-4306...

Memory corruption

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, and CVE-2010-4192...

CVE-2011-0555

CVE-2011-0555 affects Adobe Shockwave Player (TextXtra.x32). A crafted DEMX RIFF chunk in a Director file triggers incorrect buffer allocation during parsing, leading to remote code execution or heap memory corruption. Affected: Shockwave Player versions before 11.5.9.620. Mitigation: update to 1...

CVE-2011-0555

The TextXtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a Director file with a crafted DEMX RIFF chunk that triggers incorrect buffer allocation, a different vulnerability than...

CVE-2010-4192

Adobe Shockwave Player before 11.5.9.620 is affected by CVE-2010-4192, among others, via a crafted Director 3D Assets 0xFFFFFF88 record that triggers an incorrect memory allocation. This can lead to arbitrary code execution or memory corruption and, in some cases, a denial of service. The vulnera...

Shockwave Player < 11.5.9.620 (APSB11-01)

The remote Windows host contains a version of Adobe's Shockwave Player that is earlier than 11.5.9.620. Such versions are potentially affected by the following issues : - Several unspecified errors exist in the 'dirapi.dll' module that may allow arbitrary code execution. CVE-2010-2587,...