NVD

Id
12812  
Name
CVE-2010-1280  
Description
Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file, related to (1) an erroneous dereference and (2) a certain Shock.dir file.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-05-13  
Modified Date
2010-08-21  
Seq
2010-1280  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
70561 12812 CVE-2010-1280 20100511 [CAL-20100204-3]Adobe Shockwave Player Director File Parsing RCSL Pointer Overwrite  View
70562 12812 CVE-2010-1280 oval:org.mitre.oval:def:7184  View
70563 12812 CVE-2010-1280 http://www.adobe.com/support/security/bulletins/apsb10-12.html  View
70564 12812 CVE-2010-1280 20100512 [CAL-20100204-3]Adobe Shockwave Player Director File Parsing RCSL Pointer Overwrite  View
70565 12812 CVE-2010-1280 ADV-2010-1128  View
70566 12812 CVE-2010-1280 http://www.zeroscience.mk/codes/shockwave_mem.txt  View
70567 12812 CVE-2010-1280 http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4937.php  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35699 JVNDB-2010-001479 Adobe Shockwave Player における任意のコードを実行される脆弱性 Adobe Shockwave Player には、.dir ファイルの処理に関して不備があるため、任意のコードを実行される、またはサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2010-1280 43860 CVE-2010-1280 12812 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001479.html 2010-05-11 2010-05-31 View