Download
| Alert*
|
oval:org.secpod.oval:def:54250
The host is missing a security update according to Adobe advisory, APSB17-40. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could lead to remote code execution. oval:org.secpod.oval:def:54248 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:54249 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:54246 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:54247 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:54244 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:54245 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:54243 The host is installed with Adobe Shockwave Player before 12.3.5.205 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:43025 The host is installed with Adobe Shockwave Player before 12.3.1.201 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could lead to remote code execution. oval:org.secpod.oval:def:43026 The host is missing a security update according to Adobe advisory, APSB17-40. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could lead to remote code execution. oval:org.secpod.oval:def:17347 The host is installed with Adobe Shockwave Player before 11.5.0.600 and is prone to unspecified vulnerability. A flaw is present in the application, which fails to handle crafted Shockwave Player 10 content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:17349 The host is missing a security update according to Adobe advisory, APSB09-08. The update is required to fix multiple unspecified vulnerabilities. The flaws are present in the application, which fails to handle crafted Shockwave Player 10 content. Successful exploitation allows attackers to execute a ... oval:org.secpod.oval:def:17348 The host is installed with Adobe Shockwave Player before 11.0.0.465 and is prone to unspecified vulnerability. A flaw is present in the application, which fails to handle certain unknown vectors. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:4188 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4189 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4187 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4184 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4185 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle DIR files. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4191 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4192 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4190 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:1470 The host is installed with Adobe Shockwave Player and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to handle dirapi.dll module. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1472 The host is installed with Adobe Shockwave Player, and is prone to a remote code execution vulnerability. A flaw is present in the dirapi.dll module, which fails to account for a specific condition and can be made to misallocate a buffer on the heap. Successful exploitation could allow an attacker ... oval:org.secpod.oval:def:1471 The host is installed with Adobe Shockwave Player and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle dirapi.dll module. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1474 The host is installed with Adobe Shockwave Player and is prone to a remote memory corruption vulnerability. A flaw is present in the application, which fails to handle dirapi.dll module. Successful exploitation could allow an attacker to execute remote code or corrupt the memory and crash the servic ... oval:org.secpod.oval:def:1473 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the dirapi module, as it fails to validate input with malicious "Set Argument" instructions. Successful exploitation could allow an attacker to corrupt memory or execute arbi ... oval:org.secpod.oval:def:1476 The host is installed with Adobe Shockwave Player before 11.6.0.626 and is prone to a remote code execution vulnerability. A flaw is present in the dirapi.dll module, as it is possible to trigger a code path that leads to an incorrect string copy operation when processing "DRCF" chunks. Successful e ... oval:org.secpod.oval:def:1475 The host is installed with with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the dirapi.dll module, which fails to validate "Get Local" instructions in malicious director files. Successful exploitation could allow an attacker to execute arbitrary ... oval:org.secpod.oval:def:1478 The host is installed with Adobe Shockwave Player, and is prone to multiple buffer overflow vulnerabilities. The flaws are present in the IML32.dll module, since a boundary error exists when processing the data section of DEMX chunks. Successful exploitation could allow an attacker to overflow buffe ... oval:org.secpod.oval:def:1477 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the IML32.dll module, which fails to parse GIF images properly. Successful exploitation could allow an attacker to execute arbitrary code or crash the application. oval:org.secpod.oval:def:1479 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle IML32.dll module. Successful exploitation could allow an attacker to execute arbitrary code or crash the application. oval:org.secpod.oval:def:1481 The host is installed with Adobe Shockwave Player, and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle dirapi.dll module. Successful exploitation could allow an attacker to execute arbitrary code and crash the service. oval:org.secpod.oval:def:1480 The host is installed with Adobe Shockwave Player, and is prone to a remote code execution vulnerability. A flaw is present in the IML32.dll module, as it fails to validate certain fields before using them to calculate sizes used for later memory copy operations. Successful exploitation could allow ... oval:org.secpod.oval:def:1482 The host is installed with Adobe Shockwave Player, and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle dirapix.dll module .Successful exploitation could allow an attacker to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1458 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, as it fails to handle malicious requests. Successful exploitation could allow an attacker to execute arbitrary code or crash the application. oval:org.secpod.oval:def:1459 The host is installed with Adobe Shockwave Player and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a specially crafted shockwave file. Successful exploitation could allow an attacker to execute arbitrary code, corrupt memory or crash the ... oval:org.secpod.oval:def:1461 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle the memory properly. Successful exploitation could allow an attacker to execute arbitrary code or crash the application. oval:org.secpod.oval:def:1460 The host is installed with Adobe Shockwave Player and is prone to a buffer overflow vulnerability. A flaw is present in the application, as it fails to handle a buffer overflow. Successful exploitation could allow an attacker to overflow the memory or execute arbitrary code. oval:org.secpod.oval:def:1463 The host is installed with Adobe Shockwave Player and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle an integer overflow. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1462 The host is installed with Adobe Shockwave Player and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle an integer overflow. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1465 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to validate an input supplied to FLV ASSET Xtra component. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1464 The host is installed with Adobe Shockwave Player and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle an integer overflow error when parsing cursor structures. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1467 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle the memory properly. Successful exploitation could allow an attacker to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1466 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle the memory properly. Successful exploitation could allow an attacker to execute arbitrary code or crash the application.. oval:org.secpod.oval:def:1469 The host is installed with Adobe Shockwave Player and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle a design flaw in it. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1468 The host is installed with Adobe Shockwave Player and is prone to multiple buffer overflow vulnerabilities. The flaws are present in the application, which fails to handle an integer overflow when parsing DEMX chunks. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:1973 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the Dirapi.dll, which fails to parse a .dir properly. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1972 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to validate user supplied input. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1975 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow an attacker to execute arbitrary code or crash the service ... oval:org.secpod.oval:def:1974 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the msvcr90.dll, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:1977 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to validate user supplied input. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1976 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to remote code execution vulnerability. A flaw is present in the IML32.dll, which fails to validate user supplied input. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1978 The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to corrupt memory or crash the service. oval:org.secpod.oval:def:9999 The host is missing a critical security update according to APSB10-03. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:17039 The host is missing a security update according to Adobe advisory, APSB14-10. The update is required to fix denial of service vulnerability. The flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute arbitrary code or cause a den ... oval:org.secpod.oval:def:17038 The host is installed with Adobe Shockwave Player before 12.1.0.150 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute remote code or cause a denial of service (memory corrup ... oval:org.secpod.oval:def:25412 The host is installed with Adobe Shockwave Player before 12.1.9.159 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:25413 The host is installed with Adobe Shockwave Player before 12.1.9.159 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:25414 The host is missing a critical security update according to APSB15-17 advisory. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to exec ... oval:org.secpod.oval:def:39491 The host is installed with Adobe Shockwave Player before 12.2.8.198 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could lead to escalation of privilege. oval:org.secpod.oval:def:39492 The host is missing a security update according to Adobe advisory, APSB17-08. The update is required to fix a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could lead to escalation of privilege. oval:org.mitre.oval:def:5677 Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site. NOTE: some of these details are obtained from third party information. oval:org.secpod.oval:def:14886 The host is installed with Adobe Shockwave Player before 12.0.3.133 and is prone to memory corruption vulnerability. The flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:14887 The host is missing a security update according to Adobe advisory, APSB13-18. The update is required to fix memory corruption vulnerability. The flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute arbitrary code or cause a den ... oval:org.secpod.oval:def:16235 The host is installed with Adobe Shockwave Player before 12.0.7.148 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16236 The host is missing a security update according to Adobe advisory, ASPB13-29. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:16234 The host is installed with Adobe Shockwave Player before 12.0.7.148 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:26713 The host is missing a security update according to Adobe advisory, APSB15-22. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code ... oval:org.secpod.oval:def:26712 The host is installed with Adobe Shockwave Player before 12.2.0.162 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:26711 The host is installed with Adobe Shockwave Player before 12.2.0.162 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:11548 Use-after-free vulnerability in an unspecified compatibility component in Adobe Shockwave Player before 11.5.9.620 allows user-assisted remote attackers to execute arbitrary code via a crafted web site, related to the Shockwave Settings window and an unloaded library. NOTE: some of these details are ... oval:org.secpod.oval:def:15500 The host is missing a security update according to Adobe advisory, APSB13-23. The update is required to fix memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allows attackers to cause denial of service. oval:org.mitre.oval:def:6530 Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value. oval:org.secpod.oval:def:271 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:270 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:277 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to input validation vulnerability. A flaw is present in the application, which fails to validate unspecified input data. Successful exploitation allows a remote attacker to corrupt memory and execute arbitrary code on t ... oval:org.secpod.oval:def:276 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:279 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to input validation vulnerability. A flaw is present in TextXtra module of the application, which fails to properly validate unspecified input data. Successful exploitation allows a remote attacker to execute arbitrary ... oval:org.secpod.oval:def:278 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to input validation vulnerability. A flaw is present in dirapi.dll module of the application, which fails to properly validate unspecified input data. Successful exploitation allows a remote attacker to corrupt memory a ... oval:org.secpod.oval:def:273 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in IML32 module module of the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt m ... oval:org.secpod.oval:def:275 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:274 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:269 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to integer overflow vulnerability. A flaw is present in dirapi.dll module of the application, which fails to avoid integer overflow. Successful exploitation allows a remote attacker to corrupt memory and execute arbitra ... oval:org.secpod.oval:def:280 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:282 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt memory and execute arbit ... oval:org.secpod.oval:def:281 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to avoid buffer overflow via unspecified vectors. Successful exploitation allows a remote attacker to execute arbitrary code on the sys ... oval:org.secpod.oval:def:284 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to avoid integer overflow via unspecified vectors. Successful exploitation allows a remote attacker to execute arbitrary code on the s ... oval:org.secpod.oval:def:283 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in Font Xtra.x32 module of the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt ... oval:org.secpod.oval:def:286 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to input validation remote code execution vulnerability. A flaw is present in 3D assets module in Adobe Shockwave Player, which fails to validate the input. Successful exploitation allows a remote attacker to execute ar ... oval:org.secpod.oval:def:285 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in Font Xtra.x32 module of the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt ... oval:org.mitre.oval:def:5990 The application Adobe Shockwave Player is installed. oval:org.secpod.oval:def:41143 The host is installed with Adobe Shockwave Player before 12.2.9.199 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:41144 The host is missing a critical security update according to Adobe advisory, APSB17-18. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could attackers to execute arbitra ... oval:org.secpod.oval:def:15498 The host is installed with Adobe Shockwave Player before 12.0.4.144 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to cause denial of service. oval:org.secpod.oval:def:15499 The host is installed with Adobe Shockwave Player before 12.0.4.144 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to cause denial of service. oval:org.secpod.oval:def:268 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in dirapi.dll module of the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt mem ... oval:org.secpod.oval:def:267 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in dirapi.dll module of the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt mem ... oval:org.mitre.oval:def:6395 Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via a crafted web page that triggers memory corruption, related to an "invalid string length vulnerability." NOTE: some of these details are obtained from third party information. oval:org.mitre.oval:def:6394 Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3465. NOTE: some of these details are obtained from third party information. oval:org.secpod.oval:def:16793 The host is missing a security update according to Adobe advisory, APSB14-06. The update is required to fix memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle certain vectors related to memory. Successful exploitation allows attackers to cause ... oval:org.secpod.oval:def:16792 The host is installed with Adobe Shockwave Player before 12.0.9.149 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle certain vectors related to memory. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:16791 The host is installed with Adobe Shockwave Player before 12.0.9.149 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle certain vectors related to memory. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:30729 The host is missing a critical security update according to Adobe advisory, APSB15-26. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitr ... oval:org.mitre.oval:def:5722 Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3464. NOTE: some of these details are obtained from third party information. oval:org.secpod.oval:def:30728 The host is installed with Adobe Shockwave Player before 12.2.1.171 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:10765 The host is installed with Adobe Shockwave Player before 12.0.2.122 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute remote code. oval:org.secpod.oval:def:10766 The host is installed with Adobe Shockwave Player before 12.0.2.122 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute remote code. oval:org.secpod.oval:def:10767 The host is installed with Adobe Shockwave Player before 12.0.2.122 and is prone to information bypass vulnerability. A flaw is present in the application, which fails to properly prevent access to address information. Successful exploitation allow attackers to bypass the ASLR protection. oval:org.secpod.oval:def:10768 The host is installed with Adobe Shockwave Player before 12.0.2.122 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute remote code. oval:org.secpod.oval:def:10769 The host is missing a security update according to Adobe advisory, APSB13-12. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allow attackers to execute remote code, information bypass or ... oval:org.secpod.oval:def:4428 The host is missing a critical security update according to Adobe advisory, APSB11-17. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, as it fails to handle malicious requests. Successful exploitation could allow an attacker to execute arbit ... oval:org.secpod.oval:def:4429 The host is missing a critical security update according to Adobe advisory, APSB11-19. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to corrupt memo ... oval:org.secpod.oval:def:4435 The host is missing a critical security update according to Adobe advisory, APSB11-27. The update is required to fix a multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle memory. Successful exploitation allows attackers to execute arbitrary cod ... oval:org.secpod.oval:def:3176 The host is installed with Adobe Shockwave Player before 11.6.3.633 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle the DIRApi library. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:3177 The host is installed with Adobe Shockwave Player before 11.6.3.633 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:3175 The host is installed with Adobe Shockwave Player before 11.6.3.633 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle the TextXtra module. Successful exploitation allows attackers to execute arbitrary code or cause a denial o ... oval:org.secpod.oval:def:3178 The host is installed with Adobe Shockwave Player before 11.6.3.633 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle the DIRApi library. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.mitre.oval:def:8311 Heap-based buffer overflow in Adobe Shockwave Player before 11.5.6.606 allows remote attackers to execute arbitrary code via a crafted 3D model in a Shockwave file. oval:org.mitre.oval:def:8538 Multiple integer overflows in Adobe Shockwave Player before 11.5.6.606 allow remote attackers to execute arbitrary code via (1) an unspecified block type in a Shockwave file, leading to a heap-based buffer overflow; and might allow remote attackers to execute arbitrary code via (2) an unspecified 3D ... oval:org.mitre.oval:def:7477 Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted FFFFFF45h Shockwave 3D blocks in a Shockwave file. oval:org.mitre.oval:def:7273 Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation. oval:org.mitre.oval:def:7134 Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir (aka Director) file that triggers an array index error. oval:org.mitre.oval:def:7108 Integer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via a crafted .dir (aka Director) file. oval:org.mitre.oval:def:6967 Adobe Shockwave Player before 11.5.7.609 does not properly process asset entries, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted Shockwave file. oval:org.mitre.oval:def:7052 Heap-based buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via crafted embedded fonts in a Shockwave file. oval:org.mitre.oval:def:7184 Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file, related to (1) an erroneous dereference and (2) a certain Shock.dir file. oval:org.secpod.oval:def:10004 The host is missing a critical security update according to APSB10-12. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.mitre.oval:def:7268 iml32.dll in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file. oval:org.mitre.oval:def:7388 Adobe Shockwave Player before 11.5.7.609 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted ATOM size in a .dir (aka Director) file. oval:org.mitre.oval:def:7262 Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a modified field in a 0xFFFFFF49 record. oval:org.mitre.oval:def:6638 Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1286, CVE-2010-1287, CVE-2010-1289, CVE-2010-1290, and CVE-2010-1291. oval:org.mitre.oval:def:7269 Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1287, CVE-2010-1289, CVE-2010-1290, and CVE-2010-1291. oval:org.mitre.oval:def:6803 Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1289, CVE-2010-1290, and CVE-2010-1291. oval:org.mitre.oval:def:7543 Buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow attackers to execute arbitrary code via unspecified vectors. oval:org.mitre.oval:def:6652 Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1287, CVE-2010-1290, and CVE-2010-1291. oval:org.mitre.oval:def:7154 Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1287, CVE-2010-1289, and CVE-2010-1291. oval:org.mitre.oval:def:7183 Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-1284, CVE-2010-1286, CVE-2010-1287, CVE-2010-1289, and CVE-2010-1290. oval:org.mitre.oval:def:7416 The implementation of pami RIFF chunk parsing in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted ... oval:org.mitre.oval:def:12185 dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director file containing a crafted pamm chunk with an invalid (1) size and (2) number of sub-chunks, a different vulnerability than CVE-2010 ... oval:org.secpod.oval:def:9996 The host is missing a critical security update according to APSA10-04. The update is required to fix denial of service vulnerability. A flaw is present in the application, which fails to properly handle a Director movie with a crafted rcsL chunk containing a field whose value is used as a pointer of ... oval:org.mitre.oval:def:11285 The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted rcsL chunk containing a field whose value is used as a pointer offset, as exploited in t ... oval:org.mitre.oval:def:12078 An unspecified function in TextXtra.x32 in Adobe Shockwave Player before 11.5.9.615 does not properly reallocate a buffer when processing a DEMX chunk in a Director file, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code. oval:org.secpod.oval:def:10020 The host is missing a critical security update according to APSB10-25. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fail to properly handle memory. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.mitre.oval:def:12077 Stack-based buffer overflow in dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code via unspecified vectors. oval:org.mitre.oval:def:12265 dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2581, CVE-2010-4085, CVE-2010-4086, and CVE-2010-4088. oval:org.mitre.oval:def:11518 dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2581, CVE-2010-4084, CVE-2010-4086, and CVE-2010-4088. oval:org.mitre.oval:def:12030 dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Director (.dir) media file with an invalid element size, a different vulnerability than CVE-2010-2581, CVE-2010-2880, CVE-2010-4084, CVE-20 ... oval:org.mitre.oval:def:12093 IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file with a crafted mmap record containing an invalid length of a VSWV entry, a different vulnerability than CVE-2010-4089. oval:org.mitre.oval:def:12169 dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file with "duplicated references to the same KEY* chunk," a different vulnerability than CVE-2010-2581, CVE-2010-4084, CVE-2010-4085, and CVE- ... oval:org.mitre.oval:def:11748 IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file containing "duplicated LCSM entries in mmap record," a different vulnerability than CVE-2010-4087. oval:org.mitre.oval:def:12199 Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. oval:org.mitre.oval:def:12069 DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x3812 of a cer ... oval:org.mitre.oval:def:11614 IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x24C0 of a cert ... oval:org.mitre.oval:def:12012 DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x47 of a certa ... oval:org.mitre.oval:def:11998 Multiple integer overflows in the allocator in the TextXtra.x32 module in Adobe Shockwave Player before 11.5.8.612 allow remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted (1) element count or (2) element size value in a file. oval:org.mitre.oval:def:11883 DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a value associated with a buffer seek for a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie. oval:org.mitre.oval:def:11805 Adobe Shockwave Player before 11.5.8.612 does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record in a (1) .dir or (2) .dcr Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a cra ... oval:org.mitre.oval:def:11521 Integer signedness error in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a length value associated with the tSAC chunk in a Director movie. oval:org.mitre.oval:def:11924 Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption. NOTE: due to conflicting information and use of the same CVE identifier by the vendor, ZDI, and TippingPoint, it is not clear w ... oval:org.mitre.oval:def:12042 Adobe Shockwave Player before 11.5.8.612 does not properly validate offset values in the rcsL RIFF chunks of (1) .DIR and (2) .DCR Director movies, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie. oval:org.secpod.oval:def:10014 The host is missing a critical security update according to APSB10-20. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fail to properly handle memory. Successful exploitation allows remote attackers to execute remote code. oval:org.mitre.oval:def:11889 Adobe Shockwave Player before 11.5.8.612 does not properly validate an offset value in the pami RIFF chunk in a Director movie, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted movie. oval:org.mitre.oval:def:11970 Integer overflow in the 3D object functionality in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted size value in a 0xFFFFFF45 RIFF record in a Director movie. oval:org.mitre.oval:def:11554 DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a certain chunk size in the mmap chunk in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie. oval:org.mitre.oval:def:11983 IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x3712 of a cert ... oval:org.mitre.oval:def:11522 Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors. oval:org.mitre.oval:def:11913 IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x24C6 of a cert ... oval:org.mitre.oval:def:11725 Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service via unknown vectors. oval:org.mitre.oval:def:11932 Integer signedness error in the DIRAPI module in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a count value associated with an "undocumented structure" and the tSAC chunk in a Director movie. oval:org.mitre.oval:def:12021 DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly handle a certain return value associated with the rcsL chunk in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie, related to a ... oval:org.mitre.oval:def:11540 IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x320D ... oval:org.mitre.oval:def:11895 Adobe Shockwave Player before 11.5.8.612 does not properly validate a count value in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie, related to IML32X.dll and DIRAPIX.dll. oval:org.secpod.oval:def:5656 The host is installed with Adobe Shockwave Player before 11.6.5.635 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:5655 The host is installed with Adobe Shockwave Player before 11.6.5.635 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:5654 The host is installed with Adobe Shockwave Player before 11.6.5.635 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:5659 The host is missing a security update according to Adobe advisory APSB12-13. The update is required to fix memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denia ... oval:org.secpod.oval:def:5658 The host is installed with Adobe Shockwave Player before 11.6.5.635 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:5657 The host is installed with Adobe Shockwave Player before 11.6.5.635 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:7290 The host is missing a security update according to APSB12-17. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle vectors related to memory. Successful exploitation allows attackers to execute arbitrary code or cau ... oval:org.secpod.oval:def:7288 The host is installed with Adobe Shockwave Player before 11.6.6.636 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:7289 The host is installed with Adobe Shockwave Player before 11.6.6.636 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:7285 The host is installed with Adobe Shockwave Player before 11.6.6.636 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:7286 The host is installed with Adobe Shockwave Player before 11.6.6.636 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:7287 The host is installed with Adobe Shockwave Player before 11.6.6.636 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to memory. Successful exploitation allows attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:7523 The host is installed with Adobe Shockwave Player 11.6.7.637 or earlier and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:7524 The host is installed with Adobe Shockwave Player 11.6.7.637 or earlier and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:7525 The host is installed with Adobe Shockwave Player 11.6.7.637 or earlier and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:7526 The host is installed with Adobe Shockwave Player 11.6.7.637 or earlier and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:7527 The host is installed with Adobe Shockwave Player 11.6.7.637 or earlier and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:7528 The host is installed with Adobe Shockwave Player 11.6.7.637 or earlier and is prone to array out of bounds vulnerability. A flaw is present in the application, which fails to handle the array index. Successful exploitation allows attackers to execute arbitrary code oval:org.secpod.oval:def:7529 The host is missing a critical security update according to Adobe advisory, APSB12-23. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute remote code. oval:org.secpod.oval:def:4416 The host is missing a critical security update according to Adobe advisory, APSB11-01.The update is required to fix a buffer overflow vulnerability. A flaw is present in the application, which fails to avoid buffer overflow via unspecified vectors. Successful exploitation allows a remote attacker to ... oval:org.secpod.oval:def:272 The host is installed with Adobe Shockwave Player before 11.5.9.620 and is prone to denial of service (memory corruption) vulnerability. A flaw is present in dirapi.dll module of the application, which fails to avoid memory corruptions. Successful exploitation allows a remote attacker to corrupt mem ... oval:org.secpod.oval:def:8240 The host is installed with Adobe Shockwave Player 11.6.8.638 or earlier and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a movie that contains an Xtra URL. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:8241 The host is installed with Adobe Shockwave Player 11.6.8.638 or earlier and is prone to a downgrading attack vulnerability. A flaw is present in the application, which fails to handle a crafted HTML document that references Shockwave content with a certain compatibility parameter. Successful exploit ... oval:org.secpod.oval:def:9301 The host is installed with Adobe Shockwave Player 11.6.8.638 or earlier and is prone to stack overflow vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute remote code. oval:org.secpod.oval:def:9302 The host is missing a security update according to Adobe advisory, APSB13-06. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute remote code. oval:org.secpod.oval:def:9300 The host is installed with Adobe Shockwave Player 11.6.8.638 or earlier and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to execute remote code. oval:org.secpod.oval:def:4186 The host is installed with Adobe Shockwave Player before 11.6.4.634 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4193 The host is missing a critical security update according to Adobe advisory, APSB12-02. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to exe ... |
