Lucene search
RootSSV:11702HistoryJun 25, 2009 - 12:00 a.m.
Adobe Shockwave Player Director文件解析远程代码执行漏洞
2009-06-2500:00:00
Root
www.seebug.org
7
0.079 Low
EPSS
Percentile
93.5%
Bugraq ID: 35469
CVE ID:CVE-2009-1860
Adobe Shockwave Player是一款用于播放使用Director Shockwave Studio制作的网页的外挂软件。
Adobe Shockwave Player处理Director文件存在一个严重的安全问题,远程攻击者可以利用漏洞完全控制受此漏洞影响的系统。
当Shockwave player尝试装载特殊构建的Director文件时,在内存引用时恶意值可覆盖4字节内存,导致以登录用户进程权限执行任意指令。
Adobe Shockwave Player 11.5 596
升级到Adobe Shockwave Player 11.5 600版本:
<a href=“http://get.adobe.com/shockwave/” target=“_blank”>http://get.adobe.com/shockwave/</a>
Related
securityvulns
securityvulns
ZDI-09-044: Adobe Shockwave Player Director File Parsing Pointer Overwrite Vulnerability
2009-06-27 00:00:00
Adobe Shockwave Player memory corruption
2009-06-27 00:00:00
Security Update available for Shockwave Player
2009-06-27 00:00:00
threatpost
threatpost
Adobe Fixes Critical Shockwave Vulnerability
2009-06-24 10:11:41
prion
prion
Code injection
2009-06-25 01:30:00
Design/Logic Flaw
2009-06-25 01:30:00
nessus
nessus
zdi
zdi
Adobe Shockwave Player Director File Parsing Pointer Overwrite Vulnerability
2009-06-24 00:00:00
cve
cve
CVE-2009-1860
2009-06-25 01:30:00
CVE-2009-2186
2009-06-25 01:30:00
checkpoint_advisories
checkpoint_advisories
Adobe Shockwave Player Pointer Memory Overwrite (APSB09-08; CVE-2009-1860)
2009-06-23 00:00:00
openvas
openvas
Adobe Shockwave Player Remote Code Execution Vulnerability
2009-06-30 00:00:00
Adobe Shockwave Player Remote Code Execution Vulnerability
2009-06-30 00:00:00