CVSS: 10.0EPSS: 14%CPEs: 40EXPL: 0CVE-2010-2871 – Adobe Shockwave Player Director File FFFFFF45 Record Processing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-2871
24 Aug 2010 — Integer overflow in the 3D object functionality in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted size value in a 0xFFFFFF45 RIFF record in a Director movie. Desbordamiento de entero en la funcionalidad 3D en Adobe Shockwave Player anterior a 11.5.8.612, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria dinámica -heap-) o la ejecución de código de su elección a... • http://www.adobe.com/support/security/bulletins/apsb10-20.html • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 11%CPEs: 40EXPL: 0CVE-2010-2872 – Adobe Shockwave Director PAMI Chunk Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-2872
24 Aug 2010 — Adobe Shockwave Player before 11.5.8.612 does not properly validate an offset value in the pami RIFF chunk in a Director movie, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted movie. Adobe Shockwave Player anterior a v11.5.8.612 no valida correctamente un valor de desplazamiento en el fragmento pami RIFF en una película Director, el cual puede permitir a atacantes remotos producir una denegación de servicio (corrupción de memoria) o ejec... • http://www.adobe.com/support/security/bulletins/apsb10-20.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 11%CPEs: 40EXPL: 0CVE-2010-2876 – Adobe Shockwave Player Director File FFFFFF88 Record Processing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-2876
24 Aug 2010 — Adobe Shockwave Player before 11.5.8.612 does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record in a (1) .dir or (2) .dcr Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie. Adobe Shockwave Player anterior a v11.5.8.612 no valida adecuadamente los valores asociados con el cálculo del tamaño de búfer para un registro 0xFFFFFFF8 en archivos (1) .dir o (2) .dcr de una pelícu... • http://www.adobe.com/support/security/bulletins/apsb10-20.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 10%CPEs: 40EXPL: 0CVE-2010-2874 – Adobe Shockwave Director tSAC Chunk Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-2874
24 Aug 2010 — Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption. NOTE: due to conflicting information and use of the same CVE identifier by the vendor, ZDI, and TippingPoint, it is not clear whether this issue is related to use of an uninitialized pointer, an incorrect pointer offset calculation, or both. Vulnerabilidad sin especificar en Adobe Shockwave Player anterior a v11.5.8.612 permite a atacante... • http://www.adobe.com/support/security/bulletins/apsb10-20.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 2%CPEs: 23EXPL: 0CVE-2010-1284
https://notcve.org/view.php?id=CVE-2010-1284
13 May 2010 — Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1286, CVE-2010-1287, CVE-2010-1289, CVE-2010-1290, and CVE-2010-1291. Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 permite a atacantes provocar una denegación de servicio (corrupción de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, una vulner... • http://secunia.com/advisories/38751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 4%CPEs: 23EXPL: 0CVE-2010-1286
https://notcve.org/view.php?id=CVE-2010-1286
13 May 2010 — Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1287, CVE-2010-1289, CVE-2010-1290, and CVE-2010-1291. Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 permite a atacantes provocar una denegación de servicio (corrupción de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, una vulner... • http://secunia.com/advisories/38751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 0CVE-2010-1290
https://notcve.org/view.php?id=CVE-2010-1290
13 May 2010 — Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1287, CVE-2010-1289, and CVE-2010-1291. Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 permite a atacantes provocar una denegación de servicio (corrupción de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, una vulner... • http://secunia.com/advisories/38751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 4%CPEs: 23EXPL: 0CVE-2010-1287
https://notcve.org/view.php?id=CVE-2010-1287
13 May 2010 — Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1289, CVE-2010-1290, and CVE-2010-1291. Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 permite a atacantes provocar una denegación de servicio (corrupción de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, una vulner... • http://secunia.com/advisories/38751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 2%CPEs: 23EXPL: 0CVE-2010-1289
https://notcve.org/view.php?id=CVE-2010-1289
13 May 2010 — Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1287, CVE-2010-1290, and CVE-2010-1291. Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 permite a atacantes provocar una denegación de servicio (corrupción de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, una vulner... • http://secunia.com/advisories/38751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 7%CPEs: 23EXPL: 0CVE-2010-1288
https://notcve.org/view.php?id=CVE-2010-1288
13 May 2010 — Buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 podría permitir a atacantes ejecutar código de su elección mediante vectores no especificados. • http://secunia.com/advisories/38751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •