Adobe Shockwave_player
156 CVEs affecting Adobe Shockwave_player. Latest disclosed: 2017-06-20. Critical: 1, High: 9.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-3086 | Critical | 9.8 | 2017-06-20 | Adobe Shockwave versions 12.2.8.198 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execu… |
CVE-2010-1283 | High | 8.8 | 2010-05-13 | Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to execute arbitrary co… |
CVE-2010-1281 | High | 8.8 | 2010-05-13 | iml32.dll in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows… |
CVE-2010-1280 | High | 8.8 | 2010-05-13 | Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir… |
CVE-2010-0987 | High | 8.8 | 2010-05-13 | Heap-based buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via crafted embedded fonts in a S… |
CVE-2010-0986 | High | 8.8 | 2010-05-13 | Adobe Shockwave Player before 11.5.7.609 does not properly process asset entries, which allows remote attackers to cause a denial of service (memory corruption… |
CVE-2010-0130 | High | 8.8 | 2010-05-13 | Integer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via a crafted .dir (aka Director) file. |
CVE-2010-0129 | High | 8.8 | 2010-05-13 | Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to cause a denial of service (memory corruption) or possibly exec… |
CVE-2010-0127 | High | 8.8 | 2010-05-13 | Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted FFFFFF4… |
CVE-2017-2983 | High | 7.8 | 2017-03-14 | Adobe Shockwave versions 12.2.7.197 and earlier have an insecure library loading (DLL hijacking) vulnerability. Successful exploitation could lead to escalatio… |
CVE-2010-1282 | Medium | 6.5 | 2010-05-13 | Adobe Shockwave Player before 11.5.7.609 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted ATOM size in a… |
CVE-2015-7649 | | 2015-10-28 | Adobe Shockwave Player before 12.2.1.171 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. | |
CVE-2015-6681 | | 2015-09-09 | Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a… | |
CVE-2015-6680 | | 2015-09-09 | Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a… | |
CVE-2015-5121 | | 2015-07-14 | Adobe Shockwave Player before 12.1.9.159 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a… | |
CVE-2015-5120 | | 2015-07-14 | Adobe Shockwave Player before 12.1.9.159 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a… | |
CVE-2014-0505 | | 2014-03-14 | Adobe Shockwave Player before 12.1.0.150 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vec… | |
CVE-2014-0501 | | 2014-02-12 | Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vec… | |
CVE-2014-0500 | | 2014-02-12 | Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vec… | |
CVE-2013-5334 | | 2013-12-11 | Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a… |