Oval Definition:	oval:org.mitre.oval:def:8538
Revision Date: 2014-11-10 Version: 3 Title: Adobe Shockwave Player Integer Overflow Vulnerability Description: Multiple integer overflows in Adobe Shockwave Player before 11.5.6.606 allow remote attackers to execute arbitrary code via (1) an unspecified block type in a Shockwave file, leading to a heap-based buffer overflow; and might allow remote attackers to execute arbitrary code via (2) an unspecified 3D block in a Shockwave file, leading to memory corruption; or (3) a crafted 3D model in a Shockwave file, leading to heap memory corruption. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2009-4003 Platform(s): Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Product(s): Adobe Shockwave Player Definition Synopsis Adobe Shockwave Player is installed AND Adobe Shockwave Player version is less than 11.5.6.606
BACK