Security Advisory

CVE-2010-1292

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-05-13 17:00:00

Last updated 2024-08-07 01:21:18

Assigner adobe

State PUBLISHED

Description

The implementation of pami RIFF chunk parsing in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file.

← Browse all CVEs View on cve.org ↗