CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2017-11294
https://notcve.org/view.php?id=CVE-2017-11294
An issue was discovered in Adobe Shockwave 12.2.9.199 and earlier. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution. Se ha descubierto un problema en Adobe Shockwave 12.2.9.199 y anteriores. Existe una vulnerabilidad de corrupción de memoria explotable. • http://www.securityfocus.com/bid/101836 http://www.securitytracker.com/id/1039784 https://helpx.adobe.com/security/products/shockwave/apsb17-40.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 92%CPEs: 1EXPL: 1CVE-2007-1403 – Macromedia 10.1.4.20 - 'SwDir.dll' Internet Explorer Stack Overflow Denial of Service
https://notcve.org/view.php?id=CVE-2007-1403
Multiple stack-based buffer overflows in an ActiveX control in SwDir.dll 10.1.4.20 in Macromedia Shockwave allow remote attackers to cause a denial of service (Internet Explorer 7 crash) and possibly execute arbitrary code via a long (1) BGCOLOR, (2) SRC, (3) AutoStart, (4) Sound, (5) DrawLogo, or (6) DrawProgress property value, different vectors than CVE-2006-6885. Múltiples desbordamientos de búfer basado en pila en un control ActiveX en SwDir.dll 10.1.4.20 en Macromedia Shockwave permite a atacantes remotos provocar denegación de servicio (caida de Internet Explorer 7) y posiblemente ejecutar código de su elección a través de valores característicos de (1) BGCOLOR, (2) SRC, (3) AutoStart, (4) Sound, (5) DrawLogo, o (6) DrawProgress, vectores diferentes que CVE-2006-6885. • https://www.exploit-db.com/exploits/3421 http://osvdb.org/36005 http://www.securityfocus.com/bid/22842 •