Adobe » Shockwave Player : Security Vulnerabilities, CVEs, Published In 2009
Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via a crafted web page that triggers memory corruption, related to an "invalid string length vulnerability." NOTE: some of these details are obtained from third party information.
Max CVSS
9.3
EPSS Score
4.86%
Published
2009-11-04
Updated
2017-09-19
Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3464. NOTE: some of these details are obtained from third party information.
Max CVSS
9.3
EPSS Score
7.31%
Published
2009-11-04
Updated
2017-09-19
Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3465. NOTE: some of these details are obtained from third party information.
Max CVSS
9.3
EPSS Score
7.31%
Published
2009-11-04
Updated
2017-09-19
Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site. NOTE: some of these details are obtained from third party information.
Max CVSS
9.3
EPSS Score
7.81%
Published
2009-11-04
Updated
2017-09-19
Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value.
Max CVSS
9.3
EPSS Score
84.86%
Published
2009-09-18
Updated
2017-09-19
Unspecified vulnerability in Adobe Shockwave Player before 11.0.0.465 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2009-1860, related to an older issue that "was previously resolved in Shockwave Player 11.0.0.465."
Max CVSS
9.3
EPSS Score
0.94%
Published
2009-06-25
Updated
2009-07-01
Unspecified vulnerability in Adobe Shockwave Player before 11.5.0.600 allows remote attackers to execute arbitrary code via crafted Shockwave Player 10 content.
Max CVSS
9.3
EPSS Score
7.86%
Published
2009-06-25
Updated
2009-07-02
7 vulnerabilities found