CVE-2010-1292

The implementation of pami RIFF chunk parsing in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:adobe:shockwave_player:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:2.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:3.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:4.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:5.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:6.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:8.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:8.5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:9:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:10.1.0.11:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:11.0.0.456:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:11.5.0.595:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:11.5.0.596:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:11.5.1.601:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:11.5.2.602:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:a:adobe:shockwave_player:-:*:*:*:*:*:*:*
OR cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:-:*:*:*:*:*:*:*

History

28 Feb 2022, 14:35

Type Values Removed Values Added
References (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7416 - (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7416 - Third Party Advisory
References (MISC) http://www.zerodayinitiative.com/advisories/ZDI-10-089/ - (MISC) http://www.zerodayinitiative.com/advisories/ZDI-10-089/ - Third Party Advisory, VDB Entry
References (BUGTRAQ) http://www.securityfocus.com/archive/1/511242/100/0/threaded - (BUGTRAQ) http://www.securityfocus.com/archive/1/511242/100/0/threaded - Third Party Advisory, VDB Entry
CPE cpe:2.3:o:microsoft:windows_vista:-:*:*:*:*:*:*:*
cpe:2.3:a:adobe:shockwave_player:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:*:*
CWE CWE-20 CWE-119

22 Sep 2021, 14:22

Type Values Removed Values Added
CPE cpe:2.3:o:apple:mac_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Information

Published : 2010-05-13 17:30

Updated : 2024-02-04 17:54


NVD link : CVE-2010-1292

Mitre link : CVE-2010-1292

CVE.ORG link : CVE-2010-1292


JSON object : View

Products Affected

apple

  • macos

microsoft

  • windows
  • windows_7
  • windows_server_2008
  • windows_vista
  • windows_server_2003

adobe

  • shockwave_player
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer