Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27689
HistoryFeb 16, 2012 - 12:00 a.m.

[CAL-2011-0055]Adobe Shockwave Player Parsing block_cout memory corruption vulnerability

2012-02-1600:00:00
vulners.com
39
JSON

[CAL-2011-0055]Adobe Shockwave Player Parsing block_cout memory
corruption vulnerability

Discover: instruder of code audit labs of vulnhunt.com
CAL: CAL-2011-0055
CVE: CVE-2012-0759

http://blog.vulnhunt.com/index.php/2012/02/15/cal-2011-0055_adobe-shockwave-player-parsing-block_cout-memory-corruption-vulnerability/

adobe security bulletins
http://www.adobe.com/support/security/bulletins/apsb12-02.html

1 Affected Products

Test Version:
Adobe Shockeave Player 11.6.3.633
Adobe Shockwave Player 11.6.1.629
and prior

2 Vulnerability Details

When adobe shockwave player parsing the field of KEY_ATOM of Director File,
it don't have proper check,this will lead the key atom pointer overwrite.
Successfully exploited this vulnerability will lead to arbitrary code
execution.

3 Exploitable?

This vulnerability will lead the key atom pointer overwrite
Successfully exploited this vulnerability will lead to arbitrary code
execution.

4 About Code Audit Labs:

Code Audit Labs secure your software,provide Professional include source
code audit and binary code audit service.
Code Audit Labs:" You create value for customer,We protect your value"
http://www.VulnHunt.com
http://blog.vulnhunt.com
http://t.qq.com/vulnhunt
http://weibo.com/vulnhunt

Related

prion 2
cve 2
seebug 1
nessus 3
securityvulns 2
openvas 7
suse 3
prion
prion
Memory corruption
2018-02-19 19:29:00
Memory corruption
2012-02-15 01:55:00
cve
cve
CVE-2012-0771
2018-02-19 19:29:00
CVE-2012-0759
2012-02-15 01:55:00
seebug
seebug
Adobe Shockwave PlayerθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄ž
2012-02-16 00:00:00
nessus
nessus
Adobe Shockwave Player <= 11.6.3.633 Multiple Code Execution Vulnerabilities (APSB12-02) (Mac OS X)
2014-12-22 00:00:00
Shockwave Player <= 11.6.3.633 Multiple Code Execution Vulnerabilities (APSB12-02)
2012-02-14 00:00:00
openSUSE Security Update : firefox / seamonkey / thunderbird (openSUSE-SU-2013:0149-1)
2014-06-13 00:00:00
securityvulns
securityvulns
Security update available for Adobe Shockwave Player
2012-02-16 00:00:00
Adobe Shockwave Player multiple security vulnerabilities
2012-02-16 00:00:00
openvas
openvas
Adobe Shockwave Player Multiple Vulnerabilities (Feb 2012) - Windows
2012-02-17 00:00:00
Adobe Shockwave Player Multiple Vulnerabilities - Feb 2012 (MAC OS X)
2012-02-17 00:00:00
Adobe Shockwave Player Multiple Vulnerabilities - Feb 2012 (Windows)
2012-02-17 00:00:00
suse
suse
Mozilla Januarys (important)
2013-01-23 14:04:54
Mozilla Januarys (important)
2013-01-23 14:05:53
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
JSON
Related for SECURITYVULNS:DOC:27689
prion2cve2seebug1nessus3securityvulns2openvas7suse3