Memory Corruption Vulnerability in Adobe Shockwave Player (CVE-2011-0555)

Memory Corruption Vulnerability in Adobe Shockwave Player (CVE-2011-0555)

CVE-2010-4190 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted CSWV RIFF chunk that causes an incorrect calculation of an offset for a substructure, which causes an out-of-bounds "seek" of heap memory, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4191, CVE-2010-4192, and CVE-2010-4306.

Learn more about our Web Application Penetration Testing UK.