| VID |
28272 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of Shockwave Player which is older than 11.5.7.609 has been installed on the host. remote Windows host contains a web browser plugin which is affected by multiple vulnerabilities. The remote Windows host contains a version of Adobe's Shockwave Player that is earlier than 11.5.7.609. Such versions are potentially affected by multiple issues.
- Processing specially crafted FFFFFF45h Shockwave 3D blocks can result in memory corruption. (CVE-2010-0127, CVE-2010-1283)
- A signedness error that can lead to memory corruption when processing specially crafted Director files. (CVE-2010-0128)
- An array indexing error that can lead to memory corruption when processing specially crafted Director files. (CVE-2010-0129)
- An integer overflow vulnerability that can lead to memory corruption when processing specially crafted Director files. (CVE-2010-0130)
- An unspecified error when processing asset entries in Director files can lead to memory corruption. (CVE-2010-0986)
- A boundary error when processing embedded fonts from a Directory file can lead to memory corruption. (CVE-2010-0987)
- An unspecified error when processing Director files can result in memory corruption. (CVE-2010-1280)
- Several unspecified memory corruption vulnerabilities.(CVE-2010-1281, CVE-2010-1282, CVE-2010-1284, CVE-2010-1286, CVE-2010-1287, CVE-2010-1288, CVE-2010-1289, CVE-2010-1290, CVE-2010-1291, CVE-2010-1292)
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://secunia.com/secunia_research/2010-17/
http://secunia.com/secunia_research/2010-19/
http://secunia.com/secunia_research/2010-20/
http://secunia.com/secunia_research/2010-22/
http://secunia.com/secunia_research/2010-34/
http://secunia.com/secunia_research/2010-50/
http://www.zerodayinitiative.com/advisories/ZDI-10-087/
http://www.zerodayinitiative.com/advisories/ZDI-10-088/
http://www.zerodayinitiative.com/advisories/ZDI-10-089/
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=869
http://archives.neohapsis.com/archives/fulldisclosure/2010-05/0137.html
http://archives.neohapsis.com/archives/fulldisclosure/2010-05/0138.html
http://archives.neohapsis.com/archives/fulldisclosure/2010-05/0139.html
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4937.php
http://www.coresecurity.com/content/adobe-director-invalid-read
http://www.adobe.com/support/security/bulletins/apsb10-12.html
* Platforms Affected:
Shockwave Player versions prior to 11.5.7.609
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Shockwave Player (11.5.7.609 or later), available from the Adobe Web site at http://get.adobe.com/shockwave/ |
| Related URL |
CVE-2010-0127,CVE-2010-0128,CVE-2010-0129,CVE-2010-0130,CVE-2010-0986,CVE-2010-0987,CVE-2010-1280,CVE-2010-1281,CVE-2010-1282,CVE-2010-1283 (CVE) |
| Related URL |
40076,40077,40078,40079,40081,40082,40083,40084,40085,40086,40087,40088,40089,40090,40091,40093,40094,40096 (SecurityFocus) |
| Related URL |
(ISS) |
|
