CVSS: 9.8EPSS: 22%CPEs: 43EXPL: 0CVE-2011-2112 – Adobe Shockwave DEMX Chunk Multiple Field Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-2112
14 Jun 2011 — Multiple buffer overflows in IML32.dll in Adobe Shockwave Player before 11.6.0.626 allow attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en IML32.dll de Adobe Shockwave Player con anterioridad a v11.6.0.626, permite a atacantes remotos provocar una denegación de servicio (caída) o ejecutar código de su elección mediante vectores no especificados. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Shockwave Player... • http://www.adobe.com/support/security/bulletins/apsb11-17.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 4%CPEs: 43EXPL: 0CVE-2011-2119 – Adobe Shockwave rcsL String Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-2119
14 Jun 2011 — Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0317, CVE-2011-0318, CVE-2011-0319, CVE-2011-0320, CVE-2011-0335, and CVE-2011-2122. Dirapi.dll en Adobe Shockwave Player anterior a v11.6.0.626 permite a atacantes ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. Vul... • http://www.adobe.com/support/security/bulletins/apsb11-17.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 25%CPEs: 43EXPL: 0CVE-2011-2118 – Adobe Shockwave tSAC Chunk String Termination Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-2118
14 Jun 2011 — The FLV ASSET Xtra component in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified vectors, related to an "input validation vulnerability." El componente FLV ASSET Xtra en Adobe Shockwave Player anterior a v11.6.0.626 permite a atacantes remotos ejecutar código de su elección a través de vectores desconocidos, relacionada con una "vulnerabilidad de validación de entrada". This vulnerability allows remote attackers to execute arbitrary code on vulnerable insta... • http://www.adobe.com/support/security/bulletins/apsb11-17.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 13%CPEs: 42EXPL: 0CVE-2010-4196
https://notcve.org/view.php?id=CVE-2010-4196
10 Feb 2011 — The Shockwave 3d Asset module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors. El módulo Shockwave 3d Asset de Adobe Shockwave Player en versiones anteriores a la 11.5.9.620 no valida apropiadamente datos de entrada sin especificar, lo que permite a atacantes ejecutar código de su elección a través de vectores desconocidos. • http://www.adobe.com/support/security/bulletins/apsb11-01.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 5%CPEs: 42EXPL: 0CVE-2011-0569
https://notcve.org/view.php?id=CVE-2011-0569
10 Feb 2011 — The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a PFR1 chunk containing an invalid size value that leads to an unexpected sign extension and a buffer overflow, a different vulnerability than CVE-2011-0556. El módulo Font Xtra.x32 en Adobe Shockwave Player anterior a 11.5.9.620 permite a los atacantes ejecutar código de su elección o causar una denegación de servicio (corrupción de memoria) a ... • http://dvlabs.tippingpoint.com/advisory/TPTI-11-05 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 7%CPEs: 42EXPL: 0CVE-2010-4188
https://notcve.org/view.php?id=CVE-2010-4188
10 Feb 2011 — The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with an IFWV chunk with a size field of 0, which is used in the calculation of a file offset and causes invalid data to be used as a loop counter, triggering a heap-based buffer overflow, a different vulnerability than CVE-2010-2587 and CVE-2010-2588. El módulo dirapi.dll de Shockwave Player de Adobe anterior a versión 11.5.9.620, ... • http://dvlabs.tippingpoint.com/advisory/TPTI-11-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 13%CPEs: 42EXPL: 0CVE-2010-4195
https://notcve.org/view.php?id=CVE-2010-4195
10 Feb 2011 — The TextXtra module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors. El módulo TextXtra en Adobe Shockwave Player anterior a v11.5.9.620 no valida correctamente la entrada de datos no especificados, que permite a los atacantes ejecutar código de su elección a través de vectores desconocidos. • http://www.adobe.com/support/security/bulletins/apsb11-01.html • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 4%CPEs: 42EXPL: 0CVE-2011-0556
https://notcve.org/view.php?id=CVE-2011-0556
10 Feb 2011 — The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PFR1 chunk that leads to an unexpected sign extension and an invalid pointer dereference, a different vulnerability than CVE-2011-0569. El módulo Font Xtra.x32 en Shockwave Player de Adobe anterior a versión 11.5.9.620, permite a los atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) por me... • http://dvlabs.tippingpoint.com/advisory/TPTI-11-03 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 4%CPEs: 42EXPL: 0CVE-2010-4306
https://notcve.org/view.php?id=CVE-2010-4306
10 Feb 2011 — Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, and CVE-2010-4192. Adobe Shockwave Player anterior a v11.5.9.620 permite a los atacantes ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferent... • http://www.adobe.com/support/security/bulletins/apsb11-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 8%CPEs: 42EXPL: 0CVE-2010-4093
https://notcve.org/view.php?id=CVE-2010-4093
10 Feb 2011 — Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0555, CVE-2010-4187, CVE-2010-4190, CVE-2010-4191, CVE-2010-4192, and CVE-2010-4306. Adobe Shockwave Player anterior a v11.5.9.620 permite a atacantes a ejecutar código o provocar una denegación de servicio (corrupción de memoria) a través de vectores no específicos, vulnerabilidad diferente a CVE-2011-0555, CVE-... • http://www.adobe.com/support/security/bulletins/apsb11-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •