Arbitrary Code Execution and Memory Corruption in Adobe Shockwave Player (CVE-2010-4087)

Arbitrary Code Execution and Memory Corruption in Adobe Shockwave Player (CVE-2010-4087)

CVE-2010-4088 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a .dir file with "duplicated references to the same KEY* chunk," a different vulnerability than CVE-2010-2581, CVE-2010-4084, CVE-2010-4085, and CVE-2010-4086.

Learn more about our Api Penetration Testing.