CVE-2010-0986
- EPSS 5.06%
- Veröffentlicht 13.05.2010 17:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:15
Adobe Shockwave Player before 11.5.7.609 does not properly process asset entries, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted Shockwave file.
CVE-2010-0987
- EPSS 11.36%
- Veröffentlicht 13.05.2010 17:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:15
Heap-based buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via crafted embedded fonts in a Shockwave file.
CVE-2009-4002
- EPSS 8.67%
- Veröffentlicht 21.01.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:48
Heap-based buffer overflow in Adobe Shockwave Player before 11.5.6.606 allows remote attackers to execute arbitrary code via a crafted 3D model in a Shockwave file.
CVE-2009-4003
- EPSS 7.39%
- Veröffentlicht 21.01.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:48
Multiple integer overflows in Adobe Shockwave Player before 11.5.6.606 allow remote attackers to execute arbitrary code via (1) an unspecified block type in a Shockwave file, leading to a heap-based buffer overflow; and might allow remote attackers t...
CVE-2009-3463
- EPSS 6.11%
- Veröffentlicht 04.11.2009 15:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:39
Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site. NOTE: some of these details are obtained from third party information.
CVE-2009-3464
- EPSS 6.11%
- Veröffentlicht 04.11.2009 15:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:39
Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3465. NOTE: some of these details ...
CVE-2009-3465
- EPSS 6.11%
- Veröffentlicht 04.11.2009 15:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:39
Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3464. NOTE: some of these details ...
CVE-2009-3466
- EPSS 4.25%
- Veröffentlicht 04.11.2009 15:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:39
Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via a crafted web page that triggers memory corruption, related to an "invalid string length vulnerability." NOTE: some of these details are obtained from thir...
CVE-2009-3244
- EPSS 20.41%
- Veröffentlicht 18.09.2009 10:30:01
- Zuletzt bearbeitet 16.06.2026 23:11:13
Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value.
CVE-2009-1860
- EPSS 5.65%
- Veröffentlicht 25.06.2009 01:30:01
- Zuletzt bearbeitet 16.06.2026 23:08:13
Unspecified vulnerability in Adobe Shockwave Player before 11.5.0.600 allows remote attackers to execute arbitrary code via crafted Shockwave Player 10 content.