Arbitrary Code Execution and Denial of Service Vulnerability in Adobe Shockwave Player (CVE-2010-4089)

Arbitrary Code Execution and Denial of Service Vulnerability in Adobe Shockwave Player (CVE-2010-4089)

CVE-2010-4086 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Director (.dir) media file with an invalid element size, a different vulnerability than CVE-2010-2581, CVE-2010-2880, CVE-2010-4084, CVE-2010-4085, and CVE-2010-4088.

Learn more about our Api Penetration Testing.