Heap-based Buffer Overflow in Adobe Shockwave Player

Heap-based Buffer Overflow in Adobe Shockwave Player

CVE-2011-2123 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Integer overflow in the Shockwave 3D Asset x32 component in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary code via a crafted subrecord in a DEMX chunk, which triggers a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.