New Search

Adobe Shockwave Player Memory Corruption Vulnerability

oval:org.mitre.oval:def:11924

Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption. NOTE: due to conflicting information and use of the same CVE identifier by the vendor ZDI and TippingPoint it is not clear whether this issue is related to use of an uninitialized pointer an incorrect pointer offset calculation or both.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows Vista
  • Microsoft Windows 7
  • Microsoft Windows Server 2008
  • Microsoft Windows 2000
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2010-2874
Product(s):
  • Adobe Shockwave Player