NVD

Id
12815  
Name
CVE-2010-1283  
Description
Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a modified field in a 0xFFFFFF49 record.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-05-13  
Modified Date
2010-08-21  
Seq
2010-1283  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
70580 12815 CVE-2010-1283 oval:org.mitre.oval:def:7262  View
70581 12815 CVE-2010-1283 http://www.adobe.com/support/security/bulletins/apsb10-12.html  View
70582 12815 CVE-2010-1283 20100511 ZDI-10-088: Adobe Shockwave Player 3D Parsing Memory Corruption Vulnerability  View
70583 12815 CVE-2010-1283 ADV-2010-1128  View
70584 12815 CVE-2010-1283 http://www.zerodayinitiative.com/advisories/ZDI-10-088/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35702 JVNDB-2010-001482 Adobe Shockwave Player における任意のコードを実行される脆弱性 Adobe Shockwave Player には、.dirファイルの 3D オブジェクトを適切に解析しない不備があるため、任意のコードを実行される、またはサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2010-1283 43863 CVE-2010-1283 12815 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001482.html 2010-05-11 2010-06-01 View