CVSS: 9.8EPSS: 6%CPEs: 41EXPL: 0CVE-2010-4084
https://notcve.org/view.php?id=CVE-2010-4084
29 Oct 2010 — dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2581, CVE-2010-4085, CVE-2010-4086, and CVE-2010-4088. dirapi.dll en Adobe Shockwave Player anterior a v11.5.9.615 permite a los atacantes ejecutar código a su elección o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferente que... • http://www.adobe.com/support/security/bulletins/apsb10-25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 8%CPEs: 41EXPL: 0CVE-2010-4087
https://notcve.org/view.php?id=CVE-2010-4087
29 Oct 2010 — IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file with a crafted mmap record containing an invalid length of a VSWV entry, a different vulnerability than CVE-2010-4089. La biblioteca IML32.dll en Shockwave Player de Adobe anterior a versión 11.5.9.615, permite a los atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) por medio de un archivo .dir con un ... • http://www.adobe.com/support/security/bulletins/apsb10-25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 22%CPEs: 41EXPL: 0CVE-2010-3655 – Adobe Shockwave Player Lnam Chunk String Processing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-3655
29 Oct 2010 — Stack-based buffer overflow in dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer basado en pila en dirapi.dll de Adobe Shockwave Player anterior a v11.5.9.615 permite a los atacantes ejecutar código a su elección a través de vectores no especificados. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Shockwave Player. User interaction is required to exp... • http://www.adobe.com/support/security/bulletins/apsb10-25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 6%CPEs: 41EXPL: 0CVE-2010-4090 – Adobe Shockwave Player Director File SetVertexArray Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-4090
29 Oct 2010 — Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. Adobe Shockwave Player anterior a v11.5.9.615 permite a los atacantes ejecutar código a su elección o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Shockwave Player. User interaction is required to... • http://www.adobe.com/support/security/bulletins/apsb10-25.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 77%CPEs: 40EXPL: 4CVE-2010-3653 – Adobe Shockwave Player - rcsL Memory Corruption
https://notcve.org/view.php?id=CVE-2010-3653
26 Oct 2010 — The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted rcsL chunk containing a field whose value is used as a pointer offset, as exploited in the wild in October 2010. NOTE: some of these details are obtained from third party information. El módulo Director (biblioteca dirapi.dll) en Shockwave Player de Adobe anterior a versión 11.5.9.615, permite a los... • https://www.exploit-db.com/exploits/16594 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 8%CPEs: 40EXPL: 0CVE-2010-2882
https://notcve.org/view.php?id=CVE-2010-2882
26 Aug 2010 — DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x3812 of a certain file. DIRAPI.dll en dobe Shockwave Player anterior a v11.5.8.612 no parsea correctamente ficheros .dir, lo que puede dar lugar a que atacantes remotos generen una denegación de servicio (corrupción de memori... • http://www.adobe.com/support/security/bulletins/apsb10-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 40EXPL: 0CVE-2010-2865
https://notcve.org/view.php?id=CVE-2010-2865
26 Aug 2010 — Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service via unknown vectors. Vulnerabilidad sin especificar en Adobe Shockwave Player anterior a v11.5.8.612 permite a los atacantes provocar una denegación de servicio a través de vectores desconocidos • http://www.adobe.com/support/security/bulletins/apsb10-20.html •
CVSS: 9.8EPSS: 41%CPEs: 40EXPL: 1CVE-2010-2866 – Adobe Shockwave Director tSAC - Chunk Memory Corruption
https://notcve.org/view.php?id=CVE-2010-2866
26 Aug 2010 — Integer signedness error in the DIRAPI module in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a count value associated with an "undocumented structure" and the tSAC chunk in a Director movie. Error de signo en entero en el módulo DIRAPI en Adobe Shockwave Player anterior a v11.5.8.612, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o la ejecución de código de su elecció... • https://www.exploit-db.com/exploits/15076 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 8%CPEs: 40EXPL: 0CVE-2010-2870
https://notcve.org/view.php?id=CVE-2010-2870
26 Aug 2010 — DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a certain chunk size in the mmap chunk in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie. DIRAPIX.dll en Adobe Shockwave Player anterior a v11.5.8.612 no valida de forma adecuada el tamaño de determinado fragmento en el fragmento nmap de una película de Director, esto permite a atacantes remotos provocar una denegación de serv... • http://dvlabs.tippingpoint.com/advisory/TPTI-10-15 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 8%CPEs: 40EXPL: 0CVE-2010-2881
https://notcve.org/view.php?id=CVE-2010-2881
26 Aug 2010 — IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x24C0 of a certain file. IML32.dll en Adobe Shockwave Player anterior a v11.5.8.612 no valida adecuadamente los archivos .dir, lo que permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o la ... • http://www.adobe.com/support/security/bulletins/apsb10-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •