Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Shockwave_player
(Adobe)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 174 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2013-04-10 | CVE-2013-1386 | Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1384. | Shockwave_player | N/A | ||
| 2013-04-10 | CVE-2013-1385 | Adobe Shockwave Player before 12.0.2.122 does not prevent access to address information, which makes it easier for attackers to bypass the ASLR protection mechanism via unspecified vectors. | Shockwave_player | N/A | ||
| 2013-04-10 | CVE-2013-1384 | Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1386. | Shockwave_player | N/A | ||
| 2013-04-10 | CVE-2013-1383 | Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code via unspecified vectors. | Shockwave_player | N/A | ||
| 2013-02-13 | CVE-2013-0636 | Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors. | Shockwave_player | N/A | ||
| 2013-02-13 | CVE-2013-0635 | Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. | Shockwave_player | N/A | ||
| 2012-12-20 | CVE-2012-6271 | Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitrary signed Xtras via a Shockwave movie that contains an Xtra URL, as demonstrated by a URL for an outdated Xtra. | Shockwave_player | N/A | ||
| 2012-12-20 | CVE-2012-6270 | Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shockwave Player 10.4.0.025 compatibility feature via a crafted HTML document that references Shockwave content with a certain compatibility parameter, related to a "downgrading" attack. | Shockwave_player | N/A | ||
| 2012-10-23 | CVE-2012-5273 | Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4173, CVE-2012-4174, and CVE-2012-4175. | Shockwave_player | N/A | ||
| 2012-10-23 | CVE-2012-4176 | Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors. | Shockwave_player | N/A |