CVE-2010-2582 Information

Description

An unspecified function in TextXtra.x32 in Adobe Shockwave Player before 11.5.9.615 does not properly reallocate a buffer when processing a DEMX chunk in a Director file which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code.

Reference

http://secunia.com/secunia_research/2010-114/ http://www.adobe.com/support/security/bulletins/apsb10-25.html http://www.securityfocus.com/archive/1/514560/100/0/threaded http://www.securitytracker.com/id?1024664 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A12078