NVD

Id
14305  
Name
CVE-2010-2871  
Description
Integer overflow in the 3D object functionality in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted size value in a 0xFFFFFF45 RIFF record in a Director movie.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-08-26  
Modified Date
2011-07-18  
Seq
2010-2871  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
79095 14305 CVE-2010-2871 oval:org.mitre.oval:def:11970  View
79096 14305 CVE-2010-2871 http://www.adobe.com/support/security/bulletins/apsb10-20.html  View
79097 14305 CVE-2010-2871 20100824 ZDI-10-160: Adobe Shockwave Player Director File FFFFFF45 Record Processing Remote Code Execution Vulnerability  View
79098 14305 CVE-2010-2871 1024361  View
79099 14305 CVE-2010-2871 ADV-2010-2176  View
79100 14305 CVE-2010-2871 http://www.zerodayinitiative.com/advisories/ZDI-10-160  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36202 JVNDB-2010-001982 Adobe Shockwave Player の 3D オブジェクト関数における整数オーバーフローの脆弱性 Adobe Shockwave Player の 3D オブジェクト関数には、整数オーバーフローの脆弱性が存在します。 CVE-2010-2871 45451 CVE-2010-2871 14305 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001982.html 2010-08-24 2010-09-10 View