Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7jm5-r3wf-xrcx

Опубликовано: 02 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a modified field in a 0xFFFFFF49 record.

Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a modified field in a 0xFFFFFF49 record.

Ссылки

EPSS

Процентиль: 92%
0.08605
Низкий

8.8 High

CVSS3

CVE ID

CVE-2010-1283

Дефекты

CWE-787

Связанные уязвимости

nvd логотип

CVE-2010-1283

CVSS3: 8.8
nvd
больше 15 лет назад

Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a modified field in a 0xFFFFFF49 record.

EPSS

Процентиль: 92%
0.08605
Низкий

8.8 High

CVSS3

CVE ID

CVE-2010-1283

Дефекты

CWE-787