CVE-2010-1283 Information

Feb 14, 2021 cve

Description

Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a modified field in a 0xFFFFFF49 record.

Reference

http://secunia.com/advisories/38751 http://www.adobe.com/support/security/bulletins/apsb10-12.html http://www.securityfocus.com/archive/1/511253/100/0/threaded http://www.vupen.com/english/advisories/2010/1128 http://www.zerodayinitiative.com/advisories/ZDI-10-088/ https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A7262

Share on: