VYPR

Shockwave Player

by Adobe Inc.

CVEs (175)

  • CVE-2010-4084Oct 29, 2010
    risk 0.00cvss epss 0.04

    dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2581, CVE-2010-4085, CVE-2010-4086, and CVE-2010-4088.

  • CVE-2010-2581Oct 29, 2010
    risk 0.00cvss epss 0.04

    dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director file containing a crafted pamm chunk with an invalid (1) size and (2) number of sub-chunks, a different…

  • CVE-2010-2874Sep 7, 2010
    risk 0.00cvss epss 0.05

    Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption. NOTE: due to conflicting information and use of the same CVE identifier by the vendor, ZDI, and…

  • CVE-2010-2882Aug 26, 2010
    risk 0.00cvss epss 0.04

    DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at…

  • CVE-2010-2881Aug 26, 2010
    risk 0.00cvss epss 0.04

    IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at…

  • CVE-2010-2880Aug 26, 2010
    risk 0.00cvss epss 0.04

    DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at…

  • CVE-2010-2879Aug 26, 2010
    risk 0.00cvss epss 0.05

    Multiple integer overflows in the allocator in the TextXtra.x32 module in Adobe Shockwave Player before 11.5.8.612 allow remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted (1) element count or (2) element size value in…

  • CVE-2010-2878Aug 26, 2010
    risk 0.00cvss epss 0.06

    DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a value associated with a buffer seek for a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie.

  • CVE-2010-2877Aug 26, 2010
    risk 0.00cvss epss 0.06

    Adobe Shockwave Player before 11.5.8.612 does not properly validate a count value in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie, related to IML32X.dll and DIRAPIX.dll.

  • CVE-2010-2876Aug 26, 2010
    risk 0.00cvss epss 0.06

    Adobe Shockwave Player before 11.5.8.612 does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record in a (1) .dir or (2) .dcr Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute…

  • CVE-2010-2875Aug 26, 2010
    risk 0.00cvss epss 0.04

    Integer signedness error in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a length value associated with the tSAC chunk in a Director movie.

  • CVE-2010-2872Aug 26, 2010
    risk 0.00cvss epss 0.06

    Adobe Shockwave Player before 11.5.8.612 does not properly validate an offset value in the pami RIFF chunk in a Director movie, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted movie.

  • CVE-2010-2871Aug 26, 2010
    risk 0.00cvss epss 0.06

    Integer overflow in the 3D object functionality in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted size value in a 0xFFFFFF45 RIFF record in a Director movie.

  • CVE-2010-2870Aug 26, 2010
    risk 0.00cvss epss 0.05

    DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a certain chunk size in the mmap chunk in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie.

  • CVE-2010-2869Aug 26, 2010
    risk 0.00cvss epss 0.05

    IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at…

  • CVE-2010-2868Aug 26, 2010
    risk 0.00cvss epss 0.05

    IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a…

  • CVE-2010-2867Aug 26, 2010
    risk 0.00cvss epss 0.05

    DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly handle a certain return value associated with the rcsL chunk in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted…

  • CVE-2010-2865Aug 26, 2010
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service via unknown vectors.

  • CVE-2010-2864Aug 26, 2010
    risk 0.00cvss epss 0.05

    IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at…

  • CVE-2010-2863Aug 26, 2010
    risk 0.00cvss epss 0.04

    Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.

Page 8 of 9