Adobe Shockwave Player <= 11.5.9.620 (APSB11-17) (Mac OS X)

The remote Mac OS X host contains a version of Adobe Shockwave Player that is 11.5.9.620 or earlier. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption vulnerabilities affect the 'Dirapi.dll' component that can result in arbitrary code execution. CVE-2011-0317,...

ZDI-11-201: Adobe Shockwave Cursor Structure Parsing Remote Code Execution Vulnerability

ZDI-11-201: Adobe Shockwave Cursor Structure Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-201 June 14, 2011 -- CVE ID: CVE-2011-2120 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Player -...

CVE-2011-2120

Integer overflow in the CursorAsset x32 component in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2011-2120

Adobe Shockwave Player contains an integer overflow in the CursorAsset x32 component that can lead to remote code execution. Affected are Shockwave Player versions before 11.6.0.626 (and earlier Mac OS X builds cited). Public advisories (APSB11-17) and the ZDI entry confirm this vulnerability cla...