Adobe Shockwave Player — known CVE vulnerabilities
Every CVE whose affected-product data names Adobe Shockwave Player, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (174)
CVE-2015-5120 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.1.9.159 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-3348 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.3.133 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-3359 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-3360 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-5333 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-5334 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2014-0500 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2014-0501 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2014-0505 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.1.0.150 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2015-7649 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.2.1.171 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2015-6681 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2010-2863 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2007-5941 — CVSS 10.0 (critical): Stack-based buffer overflow in the SWCtl.SWCtl ActiveX control in Adobe Shockwave allows remote attackers to cause a denial of service and…
CVE-2015-6680 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2010-4308 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.1.629 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2011-2419 — CVSS 10.0 (critical): IML32.dll in Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary code or cause a denial of service…
CVE-2011-2420 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2010-4309 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.1.629 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2011-2422 — CVSS 10.0 (critical): Textra.x32 in Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary code or cause a denial of service…
CVE-2011-2423 — CVSS 10.0 (critical): msvcr90.dll in Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary code or cause a denial of service…
CVE-2011-2446 — CVSS 10.0 (critical): The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2011-2447 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2011-2448 — CVSS 10.0 (critical): The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2011-2449 — CVSS 10.0 (critical): The TextXtra module in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2012-0757 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2012-0758 — CVSS 10.0 (critical): Heap-based buffer overflow in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2012-0759 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-0760 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2012-0761 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2012-0762 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2012-0763 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2012-0764 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2012-0766 — CVSS 10.0 (critical): The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial…
CVE-2015-5121 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.1.9.159 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2029 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2030 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2031 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2032 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2033 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2043 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2044 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2045 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2046 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-2047 — CVSS 10.0 (critical): Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-4172 — CVSS 10.0 (critical): Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different…
CVE-2012-4173 — CVSS 10.0 (critical): Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different…
CVE-2012-4174 — CVSS 10.0 (critical): Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different…
CVE-2012-4175 — CVSS 10.0 (critical): Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different…
CVE-2012-4176 — CVSS 10.0 (critical): Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2012-5273 — CVSS 10.0 (critical): Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different…
CVE-2013-0635 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-0636 — CVSS 10.0 (critical): Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2013-1383 — CVSS 10.0 (critical): Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2013-1384 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2013-1385 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.2.122 does not prevent access to address information, which makes it easier for attackers to bypass the…
CVE-2013-1386 — CVSS 10.0 (critical): Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2019-7098 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2017-3086 — CVSS 9.8 (critical): Adobe Shockwave versions 12.2.8.198 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to…
CVE-2019-7099 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2019-7102 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2019-7104 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2019-7103 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2019-7101 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2019-7100 — CVSS 9.8 (critical): Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to…
CVE-2010-4307 — CVSS 9.3 (critical): Buffer overflow in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2011-0317 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-0318 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-0319 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-0320 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-0335 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-0555 — CVSS 9.3 (critical): The TextXtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows remote attackers to execute arbitrary code or cause a denial of…
CVE-2011-0556 — CVSS 9.3 (critical): The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of…
CVE-2011-0557 — CVSS 9.3 (critical): Integer overflow in Adobe Shockwave Player before 11.5.9.620 allows remote attackers to execute arbitrary code via a Director movie with a…
CVE-2011-0569 — CVSS 9.3 (critical): The Font Xtra.x32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of…
CVE-2011-2108 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified vectors, related to a "design flaw."
CVE-2011-2109 — CVSS 9.3 (critical): Multiple integer overflows in Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allow attackers to execute arbitrary code via…
CVE-2011-2111 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-2112 — CVSS 9.3 (critical): Multiple buffer overflows in IML32.dll in Adobe Shockwave Player before 11.6.0.626 allow attackers to execute arbitrary code via…
CVE-2011-2113 — CVSS 9.3 (critical): Multiple buffer overflows in the Shockwave3DAsset component in Adobe Shockwave Player before 11.6.0.626 allow attackers to execute…
CVE-2011-2114 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2011-2115 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary code or cause a denial of service…
CVE-2011-2116 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-2117 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2011-2118 — CVSS 9.3 (critical): The FLV ASSET Xtra component in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified…
CVE-2011-2119 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-2120 — CVSS 9.3 (critical): Integer overflow in the CursorAsset x32 component in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code…
CVE-2011-2121 — CVSS 9.3 (critical): Integer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2011-2122 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2011-2123 — CVSS 9.3 (critical): Integer overflow in the Shockwave 3D Asset x32 component in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute…
CVE-2011-2124 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2011-2125 — CVSS 9.3 (critical): Buffer overflow in Dirapix.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified…
CVE-2011-2126 — CVSS 9.3 (critical): Buffer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2011-2127 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2005-3525 — CVSS 9.3 (critical): Stack-based buffer overflow in an ActiveX control for the installer for Adobe Macromedia Shockwave Player 10.1.0.11 and earlier allows…
CVE-2011-2421 — CVSS 9.3 (critical): Dirapi.dll in Adobe Shockwave Player before 11.6.1.629 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2012-6270 — CVSS 9.3 (critical): Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shockwave Player 10.4.0.025 compatibility…
CVE-2012-6271 — CVSS 9.3 (critical): Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitrary signed Xtras via a Shockwave movie…
CVE-2011-2128 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2009-1860 — CVSS 9.3 (critical): Unspecified vulnerability in Adobe Shockwave Player before 11.5.0.600 allows remote attackers to execute arbitrary code via crafted…
CVE-2009-2186 — CVSS 9.3 (critical): Unspecified vulnerability in Adobe Shockwave Player before 11.0.0.465 allows remote attackers to execute arbitrary code via unknown…
CVE-2009-3244 — CVSS 9.3 (critical): Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to…
CVE-2009-3463 — CVSS 9.3 (critical): Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave…
CVE-2009-3464 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site…
CVE-2009-3465 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site…
CVE-2009-3466 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via a crafted web page that triggers memory…
CVE-2009-4002 — CVSS 9.3 (critical): Heap-based buffer overflow in Adobe Shockwave Player before 11.5.6.606 allows remote attackers to execute arbitrary code via a crafted 3D…
CVE-2009-4003 — CVSS 9.3 (critical): Multiple integer overflows in Adobe Shockwave Player before 11.5.6.606 allow remote attackers to execute arbitrary code via (1) an…
CVE-2010-0128 — CVSS 9.3 (critical): Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote…
CVE-2010-1284 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2010-1286 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2010-1287 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2010-1288 — CVSS 9.3 (critical): Buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow attackers to execute arbitrary code via unspecified vectors.
CVE-2010-1289 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2010-1290 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2010-1291 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary…
CVE-2010-1292 — CVSS 9.3 (critical): The implementation of pami RIFF chunk parsing in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file…
CVE-2010-2581 — CVSS 9.3 (critical): dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service…
CVE-2010-2582 — CVSS 9.3 (critical): An unspecified function in TextXtra.x32 in Adobe Shockwave Player before 11.5.9.615 does not properly reallocate a buffer when processing a…
CVE-2010-2587 — CVSS 9.3 (critical): The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2010-2588 — CVSS 9.3 (critical): The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2010-2589 — CVSS 9.3 (critical): Integer overflow in the dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code via…
CVE-2010-2864 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial…
CVE-2010-2866 — CVSS 9.3 (critical): Integer signedness error in the DIRAPI module in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of…
CVE-2010-2867 — CVSS 9.3 (critical): DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly handle a certain return value associated with the rcsL chunk in a…
CVE-2010-2868 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial…
CVE-2010-2869 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial…
CVE-2010-2870 — CVSS 9.3 (critical): DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a certain chunk size in the mmap chunk in a Director…
CVE-2010-2871 — CVSS 9.3 (critical): Integer overflow in the 3D object functionality in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of…
CVE-2010-2872 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.8.612 does not properly validate an offset value in the pami RIFF chunk in a Director movie, which…
CVE-2010-2873 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.8.612 does not properly validate offset values in the rcsL RIFF chunks of (1) .DIR and (2) .DCR Director…
CVE-2010-2874 — CVSS 9.3 (critical): Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to execute arbitrary code via unknown vectors…
CVE-2010-2875 — CVSS 9.3 (critical): Integer signedness error in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory…
CVE-2010-2876 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.8.612 does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record…
CVE-2010-2877 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.8.612 does not properly validate a count value in a Director movie, which allows remote attackers to…
CVE-2010-2878 — CVSS 9.3 (critical): DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a value associated with a buffer seek for a Director…
CVE-2010-2879 — CVSS 9.3 (critical): Multiple integer overflows in the allocator in the TextXtra.x32 module in Adobe Shockwave Player before 11.5.8.612 allow remote attackers…
CVE-2010-2880 — CVSS 9.3 (critical): DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial…
CVE-2010-2881 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial…
CVE-2010-2882 — CVSS 9.3 (critical): DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial…
CVE-2010-3653 — CVSS 9.3 (critical): The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a…
CVE-2010-3655 — CVSS 9.3 (critical): Stack-based buffer overflow in dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code via…
CVE-2010-4084 — CVSS 9.3 (critical): dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2010-4085 — CVSS 9.3 (critical): dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2010-4086 — CVSS 9.3 (critical): dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2010-4087 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2010-4088 — CVSS 9.3 (critical): dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2010-4089 — CVSS 9.3 (critical): IML32.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2010-4090 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2010-4092 — CVSS 9.3 (critical): Use-after-free vulnerability in an unspecified compatibility component in Adobe Shockwave Player before 11.5.9.620 allows user-assisted…
CVE-2010-4093 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2010-4187 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a…
CVE-2010-4188 — CVSS 9.3 (critical): The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2010-4189 — CVSS 9.3 (critical): The IML32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service…
CVE-2010-4190 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a…
CVE-2010-4191 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2010-4192 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a…
CVE-2010-4193 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers to execute arbitrary…
CVE-2010-4194 — CVSS 9.3 (critical): The dirapi.dll module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers…
CVE-2010-4195 — CVSS 9.3 (critical): The TextXtra module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers…
CVE-2010-4196 — CVSS 9.3 (critical): The Shockwave 3d Asset module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows…
CVE-2010-4306 — CVSS 9.3 (critical): Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2012-0771 — CVSS 8.8 (high): Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2010-0986 — CVSS 8.8 (high): Adobe Shockwave Player before 11.5.7.609 does not properly process asset entries, which allows remote attackers to cause a denial of…
CVE-2010-0130 — CVSS 8.8 (high): Integer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via a crafted .dir (aka…
CVE-2010-0129 — CVSS 8.8 (high): Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to cause a denial of service (memory…
CVE-2010-0127 — CVSS 8.8 (high): Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2010-1283 — CVSS 8.8 (high): Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows remote attackers to…
CVE-2010-1281 — CVSS 8.8 (high): iml32.dll in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer…
CVE-2010-1280 — CVSS 8.8 (high): Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2010-0987 — CVSS 8.8 (high): Heap-based buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via crafted…
CVE-2017-2983 — CVSS 7.8 (high): Adobe Shockwave versions 12.2.7.197 and earlier have an insecure library loading (DLL hijacking) vulnerability. Successful exploitation…
CVE-2010-1282 — CVSS 6.5 (medium): Adobe Shockwave Player before 11.5.7.609 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a…
CVE-2010-2865 — CVSS 5.0 (medium): Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows attackers to cause a denial of service via unknown vectors.
CVE-2007-5275 — CVSS 5.0 (medium): The Adobe Macromedia Flash 9 plug-in allows remote attackers to cause a victim machine to establish TCP sessions with arbitrary hosts via a…