IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x24C6 of a certain file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2010-08-26T20:00:00
Updated: 2024-08-07T02:46:48.570Z
Reserved: 2010-07-27T00:00:00
Link: CVE-2010-2864
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-08-26T21:00:01.653
Modified: 2024-11-21T01:17:31.550
Link: CVE-2010-2864
Redhat
No data.