The host is installed with Adobe Shockwave Player before 11.5.8.612 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a length value associated with the tSAC chunk in a Director movie. Successful exploitation allows remote attackers to cause a denial of service or execute arbitrary code.
Integer signedness error in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a length value associated with the tSAC chunk in a Director movie.
Adobe Shockwave Player before 11.5.8.612 does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record in a (1) .dir or (2) .dcr Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie.
The host is installed with Adobe Shockwave Player before 11.5.8.612 and is prone to memory corruption vulnerability. A flaw is present in the application, which does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record in a .dir or .dcr Director movie. Successful exploitation allows remote attackers to cause a denial of service or execute arbitrary code.
The host is installed with Adobe Shockwave Player before 11.5.8.612 and is prone to memory corruption vulnerability. A flaw is present in the application, which does not properly validate a value associated with a buffer seek for a Director movie. Successful exploitation allows remote attackers to cause a denial of service or execute arbitrary code.
DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a value associated with a buffer seek for a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie.
Multiple integer overflows in the allocator in the TextXtra.x32 module in Adobe Shockwave Player before 11.5.8.612 allow remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted (1) element count or (2) element size value in a file.
The host is installed with Adobe Shockwave Player before 11.5.8.612 and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted element count or element size value in a file. Successful exploitation allows remote attackers to cause a denial of service or execute arbitrary code.
The host is installed with Adobe Shockwave Player before 11.5.8.612 and is prone to memory corruption vulnerability. A flaw is present in the application, which does not properly parse .dir files. Successful exploitation allows remote attackers to cause a denial of service.
DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a malformed file containing an invalid value, as demonstrated by a value at position 0x47 of a certain file.