| Revision Date: | 2014-11-10 | Version: | 5 |
| Title: | Adobe Shockwave Player Director File Parsing Invalid Offset Remote Code Execution Vulnerability |
| Description: | iml32.dll in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2010-1281
|
| Platform(s): | Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Adobe Shockwave Player
|
| Definition Synopsis |
| Adobe Shockwave Player is installed AND Adobe Shockwave Player version is less than 11.5.7.609
|