NVD

Id
15473  
Name
CVE-2010-4190  
Description
Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted CSWV RIFF chunk that causes an incorrect calculation of an offset for a substructure, wihch causes an out-of-bounds "seek" of heap memory, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4191, CVE-2010-4192, and CVE-2010-4306.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2011-02-10  
Modified Date
2011-02-17  
Seq
2010-4190  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
87428 15473 CVE-2010-4190 http://www.adobe.com/support/security/bulletins/apsb11-01.html  View
87429 15473 CVE-2010-4190 20110209 ZDI-11-080: Adobe Shockwave CSWV Chunk Substructure Offset Value Remote Code Execution Vulnerability  View
87430 15473 CVE-2010-4190 46324  View
87431 15473 CVE-2010-4190 1025056  View
87432 15473 CVE-2010-4190 ADV-2011-0335  View
87433 15473 CVE-2010-4190 http://www.zerodayinitiative.com/advisories/ZDI-11-080/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
30986 JVNDB-2011-001225 Adobe Shockwave Player における任意のコードを実行される脆弱性 Adobe Shockwave Player には、任意のコードを実行される、またはサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2010-4190 46770 CVE-2010-4190 15473 9.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-001225.html 2011-02-08 2011-03-10 View