[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Memory corruption vulnerability in Adobe Shockwave Player via a crafted movie (Mac OS X) (V)

ID: oval:org.secpod.oval:def:5422Date: (C)2012-04-30   (M)2023-11-26
Class: VULNERABILITYFamily: macos




The host is installed with Adobe Shockwave Player before 11.5.8.612 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly validate a certain chunk size in the mmap chunk in a Director movie. Successful exploitation allows remote attackers to cause a denial of service or execute arbitrary code.

Platform:
Apple Mac OS 14
Apple Mac OS 13
Apple Mac OS 12
Apple Mac OS 11
Apple Mac OS X 10.14
Apple Mac OS X 10.15
Apple Mac OS X 10.13
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Apple Mac OS X Server 10.11
Apple Mac OS X Server 10.12
Product:
Adobe Shockwave Player
Reference:
CVE-2010-2870
CVE    1
CVE-2010-2870
CPE    40
cpe:/a:adobe:shockwave_player:10.1.0.11
cpe:/a:adobe:shockwave_player:10.0.0.210
cpe:/a:adobe:shockwave_player:11.0.0.456
cpe:/a:adobe:shockwave_player:10.1.4.020
...

© SecPod Technologies