Unspecified vulnerability in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption. NOTE: due to conflicting information and use of the same CVE identifier by the vendor, ZDI, and TippingPoint, it is not clear whether this issue is related to use of an uninitialized pointer, an incorrect pointer offset calculation, or both.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 2.0 | 9.3 | HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
| Hyperlink | Source | Resource |
|---|---|---|
| http://www.adobe.com/support/security/bulletins/apsb10-20.html | psirt@adobe.com | Patch Vendor Advisory |
| http://www.securitytracker.com/id?1024361 | psirt@adobe.com | N/A |
| http://www.vupen.com/english/advisories/2010/2176 | psirt@adobe.com | Vendor Advisory |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11924 | psirt@adobe.com | N/A |
| http://www.adobe.com/support/security/bulletins/apsb10-20.html | af854a3a-2127-422b-91ae-364da2661108 | Patch Vendor Advisory |
| http://www.securitytracker.com/id?1024361 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| http://www.vupen.com/english/advisories/2010/2176 | af854a3a-2127-422b-91ae-364da2661108 | Vendor Advisory |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11924 | af854a3a-2127-422b-91ae-364da2661108 | N/A |