CVE-2011-2115

IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted tSAC chunk, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2011-2111 and CVE-2011-2116...

Heap overflow

IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted tSAC chunk, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2011-2111 and CVE-2011-2116...

Adobe Shockwave tSAC Chunk String Termination Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Shockwave Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Adobe Shockwave Director tSAC Chunk Invalid Seek Memory Corruption (CVE-2010-2875)

Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A remote code execution vulnerability has been identified in Adobe Shockwave Player. The vulnerability is d...

Adobe Shockwave Director tSAC Chunk Memory Corruption

Exploit for windows platform in category dos / poc ===================================================== Adobe Shockwave Director tSAC Chunk Memory Corruption ===================================================== Title : Adobe Shockwave Director tSAC Chunk memory corruption Version : dirapi.dll...

Month Of Abysssec Undisclosed Bugs - Adobe Shockwave Director

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | """ htmlTest = open'poc.html', 'wb' htmlTest.writetemp htmlTest.close sampleFile = open'sample.dir','rb' pocFile = open"poc.DIR",'wb' pocFile.writesampleFile.read-1 sampleFile.close pocFile.seek13168...

Integer overflow

Integer signedness error in the DIRAPI module in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service memory corruption or execute arbitrary code via a count value associated with an "undocumented structure" and the tSAC chunk in a Director movie...

ZDI-10-163: Adobe Shockwave Director tSAC Chunk Parsing Remote Code Execution Vulnerability

ZDI-10-163: Adobe Shockwave Director tSAC Chunk Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-163 August 24, 2010 -- CVE ID: CVE-2010-2874 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Play...