Shockwave Player@11.5.7.609 Security Vulnerabilities and Issues — Shockwave Player@11.5.7.609 CVE List

Lucene search

AdobeShockwave Player11.5.7.609

109 matches found

CVE•added 2012/05/09 4:36 a.m.•121 views

CVE-2012-2030

Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2029, CVE-2012-2031, CVE-2012-2032, and CVE-2012-2033.

10CVSS7.6AI score0.27984EPSS

CVE•added 2010/10/26 6:0 p.m.•62 views

CVE-2010-3653

The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted rcsL chunk containing a field whose value is used as a pointer offset, as exploited in ...

9.3CVSS7.6AI score0.77779EPSS

CVE•added 2012/02/15 1:55 a.m.•59 views

CVE-2012-0759

Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0771.

10CVSS8.9AI score0.09187EPSS

CVE•added 2010/10/29 7:0 p.m.•57 views

CVE-2010-2581

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director file containing a crafted pamm chunk with an invalid (1) size and (2) number of sub-chunks, a different vulnerability than CVE-201...

9.3CVSS7.6AI score0.06926EPSS

CVE•added 2010/10/29 7:0 p.m.•56 views

CVE-2010-4086

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Director (.dir) media file with an invalid element size, a different vulnerability than CVE-2010-2581, CVE-2010-2880, CVE-2010-4084, CVE-2...

9.3CVSS7.4AI score0.08873EPSS

CVE•added 2012/02/15 1:55 a.m.•56 views

CVE-2012-0763

The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0757, CVE-2012-0760, CVE-2012-0761, CVE-2012-0762, CVE-2012-0764,...

10CVSS8.9AI score0.15495EPSS

CVE•added 2012/02/15 1:55 a.m.•56 views

CVE-2012-0764

10CVSS8.9AI score0.15495EPSS

CVE•added 2010/10/29 7:0 p.m.•55 views

CVE-2010-3655

Stack-based buffer overflow in dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code via unspecified vectors.

9.3CVSS7.9AI score0.22274EPSS

CVE•added 2012/02/15 1:55 a.m.•54 views

CVE-2012-0757

The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0760, CVE-2012-0761, CVE-2012-0762, CVE-2012-0763, CVE-2012-0764,...

10CVSS8.9AI score0.15495EPSS

CVE•added 2012/02/15 1:55 a.m.•53 views

CVE-2012-0762

10CVSS8.9AI score0.15495EPSS

CVE•added 2012/05/09 4:36 a.m.•53 views

CVE-2012-2029

Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2030, CVE-2012-2031, CVE-2012-2032, and CVE-2012-2033.

10CVSS7.6AI score0.27984EPSS

CVE•added 2010/10/29 7:0 p.m.•52 views

CVE-2010-4089

IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file containing "duplicated LCSM entries in mmap record," a different vulnerability than CVE-2010-4087.

9.3CVSS7.5AI score0.08371EPSS

CVE•added 2012/02/15 1:55 a.m.•52 views

CVE-2012-0761

10CVSS8.9AI score0.15495EPSS

CVE•added 2010/10/29 7:0 p.m.•51 views

CVE-2010-2582

An unspecified function in TextXtra.x32 in Adobe Shockwave Player before 11.5.9.615 does not properly reallocate a buffer when processing a DEMX chunk in a Director file, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code.

9.3CVSS7.8AI score0.09881EPSS

CVE•added 2010/10/29 7:0 p.m.•51 views

CVE-2010-4085

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2581, CVE-2010-4084, CVE-2010-4086, and CVE-2010-4088.

9.3CVSS7.6AI score0.06926EPSS

CVE•added 2011/06/16 11:55 p.m.•51 views

CVE-2011-2114

Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2117, CVE-2011-2124, CVE-2011-2127, and CVE-2011-2128.

9.3CVSS7.6AI score0.08743EPSS

CVE•added 2012/02/15 1:55 a.m.•51 views

CVE-2012-0760

10CVSS8.9AI score0.15495EPSS

CVE•added 2011/02/10 4:0 p.m.•50 views

CVE-2010-2587

The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2588 and CVE-2010-4188.

9.3CVSS7.6AI score0.07844EPSS

CVE•added 2011/02/10 4:0 p.m.•50 views

CVE-2010-4188

The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with an IFWV chunk with a size field of 0, which is used in the calculation of a file offset and causes invalid data to ...

9.3CVSS7.6AI score0.07844EPSS

CVE•added 2011/02/10 4:0 p.m.•50 views

CVE-2010-4195

The TextXtra module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors.

9.3CVSS7.5AI score0.13253EPSS

CVE•added 2012/08/15 10:31 a.m.•50 views

CVE-2012-2047

Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2043, CVE-2012-2044, CVE-2012-2045, and CVE-2012-2046.

10CVSS7.6AI score0.09187EPSS

CVE•added 2013/04/10 3:48 a.m.•50 views

CVE-2013-1383

Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.7AI score0.14116EPSS

CVE•added 2010/10/29 7:0 p.m.•49 views

CVE-2010-4084

9.3CVSS7.6AI score0.06926EPSS

CVE•added 2010/10/29 7:0 p.m.•49 views

CVE-2010-4090

Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

9.3CVSS7.8AI score0.0613EPSS

CVE•added 2011/02/10 4:0 p.m.•49 views

CVE-2011-0555

The TextXtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a Director file with a crafted DEMX RIFF chunk that triggers incorrect buffer allocation, a different vulnerability than CV...

9.3CVSS7.7AI score0.09599EPSS

CVE•added 2011/06/16 11:55 p.m.•49 views

CVE-2011-2111

IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2115 and CVE-2011-2116.

9.3CVSS7.6AI score0.08046EPSS

CVE•added 2012/02/15 1:55 a.m.•49 views

CVE-2012-0766

10CVSS8.9AI score0.15495EPSS

CVE•added 2012/05/09 4:36 a.m.•49 views

CVE-2012-2032

10CVSS7.6AI score0.27984EPSS

CVE•added 2012/08/15 10:31 a.m.•49 views

CVE-2012-2045

10CVSS7.6AI score0.09187EPSS

CVE•added 2014/02/12 4:50 a.m.•49 views

CVE-2014-0501

Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0500.

10CVSS7.9AI score0.25582EPSS

CVE•added 2011/02/10 4:0 p.m.•48 views

CVE-2010-2588

9.3CVSS7.6AI score0.07844EPSS

CVE•added 2010/10/29 7:0 p.m.•48 views

CVE-2010-4088

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file with "duplicated references to the same KEY* chunk," a different vulnerability than CVE-2010-2581, CVE-2010-4084, CVE-2010-4085, and CVE...

9.3CVSS7.4AI score0.06926EPSS

CVE•added 2011/06/16 11:55 p.m.•48 views

CVE-2011-2122

Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to rcsL substructures, a different vulnerability than CVE-2011-0317, CVE-2011-0318, CVE-2011-0319, CVE-2011-0320, CVE-20...

9.3CVSS7.5AI score0.03631EPSS

CVE•added 2011/06/16 11:55 p.m.•48 views

CVE-2011-2123

Integer overflow in the Shockwave 3D Asset x32 component in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary code via a crafted subrecord in a DEMX chunk, which triggers a heap-based buffer overflow.

9.3CVSS8AI score0.12903EPSS

CVE•added 2011/11/08 10:55 p.m.•48 views

CVE-2011-2446

The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2448.

10CVSS7.6AI score0.05764EPSS

CVE•added 2012/10/23 11:55 p.m.•48 views

CVE-2012-5273

Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4173, CVE-2012-4174, and CVE-2012-4175.

10CVSS7.7AI score0.05244EPSS

CVE•added 2011/02/10 4:0 p.m.•47 views

CVE-2010-4191

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4190, CVE-2010-4192, and CVE-2010-4306.

9.3CVSS7.6AI score0.09599EPSS

CVE•added 2011/08/11 10:55 p.m.•47 views

CVE-2010-4309

Adobe Shockwave Player before 11.6.1.629 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-4308.

10CVSS7.7AI score0.05678EPSS

CVE•added 2012/05/09 4:36 a.m.•47 views

CVE-2012-2031

10CVSS7.6AI score0.27984EPSS

CVE•added 2012/08/15 10:31 a.m.•47 views

CVE-2012-2043

Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2044, CVE-2012-2045, CVE-2012-2046, and CVE-2012-2047.

10CVSS7.6AI score0.09187EPSS

CVE•added 2012/08/15 10:31 a.m.•47 views

CVE-2012-2046

10CVSS7.6AI score0.09187EPSS

CVE•added 2013/02/13 9:55 p.m.•47 views

CVE-2013-0636

Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.9AI score0.30763EPSS

CVE•added 2013/07/10 10:55 a.m.•47 views

CVE-2013-3348

Adobe Shockwave Player before 12.0.3.133 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

10CVSS7.7AI score0.11434EPSS

CVE•added 2010/10/29 7:0 p.m.•46 views

CVE-2010-4087

IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file with a crafted mmap record containing an invalid length of a VSWV entry, a different vulnerability than CVE-2010-4089.

9.3CVSS7.4AI score0.08371EPSS

CVE•added 2011/02/10 4:0 p.m.•46 views

CVE-2010-4093

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, CVE-2010-4192, and CVE-2010-4306.

9.3CVSS7.6AI score0.09599EPSS

CVE•added 2011/02/10 4:0 p.m.•46 views

CVE-2010-4189

The IML32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie containing a GIF image with a crafted global color table size value, which causes an out-of-range pointer offset.

9.3CVSS7.5AI score0.0481EPSS

CVE•added 2011/02/10 4:0 p.m.•46 views

CVE-2010-4194

The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors.

9.3CVSS7.5AI score0.13253EPSS

CVE•added 2011/06/16 11:55 p.m.•46 views

CVE-2011-0335

Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0317, CVE-2011-0318, CVE-2011-0319, CVE-2011-0320, CVE-2011-2119, and CVE-2011-2122.

9.3CVSS7.5AI score0.03631EPSS

CVE•added 2011/06/16 11:55 p.m.•46 views

CVE-2011-2113

Multiple buffer overflows in the Shockwave3DAsset component in Adobe Shockwave Player before 11.6.0.626 allow attackers to execute arbitrary code via unspecified vectors.

9.3CVSS7.6AI score0.07733EPSS

CVE•added 2011/06/16 11:55 p.m.•46 views

CVE-2011-2121

Integer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified vectors.

9.3CVSS7.7AI score0.09529EPSS

Total number of security vulnerabilities109