4 matches found
CVE-2011-0556
The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted PFR1 chunk that leads to an unexpected sign extension and an invalid pointer dereference, a different vulnerability than...
Memory corruption
The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted PFR1 chunk that leads to an unexpected sign extension and an invalid pointer dereference, a different vulnerability than...
Buffer overflow
The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via a PFR1 chunk containing an invalid size value that leads to an unexpected sign extension and a buffer overflow, a different...
CVE-2011-0569
The CVE-2011-0569 entry concerns Adobe Shockwave Player’s Font Xtra.x32 module. The vulnerability arises in the PFR1 chunk parsing when a 16-bit size value is sign-extended and used in a copy loop, leading to a buffer overflow that can enable arbitrary code execution or memory corruption. Affecte...