Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2010-4190

Disclosure Date: February 10, 2011
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted CSWV RIFF chunk that causes an incorrect calculation of an offset for a substructure, which causes an out-of-bounds “seek” of heap memory, a different vulnerability than CVE-2011-0555, CVE-2010-4093, CVE-2010-4187, CVE-2010-4191, CVE-2010-4192, and CVE-2010-4306.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Vendors

  • adobe

Products

  • shockwave player,
  • shockwave player 1.0,
  • shockwave player 10.0.0.210,
  • shockwave player 10.0.1.004,
  • shockwave player 10.1.0.011,
  • shockwave player 10.1.0.11,
  • shockwave player 10.1.1.016,
  • shockwave player 10.1.4.020,
  • shockwave player 10.2.0.021,
  • shockwave player 10.2.0.022,
  • shockwave player 10.2.0.023,
  • shockwave player 11.0.0.456,
  • shockwave player 11.0.3.471,
  • shockwave player 11.5.0.595,
  • shockwave player 11.5.0.596,
  • shockwave player 11.5.1.601,
  • shockwave player 11.5.2.602,
  • shockwave player 11.5.6.606,
  • shockwave player 11.5.7.609,
  • shockwave player 11.5.8.612,
  • shockwave player 2.0,
  • shockwave player 3.0,
  • shockwave player 4.0,
  • shockwave player 5.0,
  • shockwave player 6.0,
  • shockwave player 8.0,
  • shockwave player 8.0.196,
  • shockwave player 8.0.196a,
  • shockwave player 8.0.204,
  • shockwave player 8.0.205,
  • shockwave player 8.5.1,
  • shockwave player 8.5.1.100,
  • shockwave player 8.5.1.103,
  • shockwave player 8.5.1.105,
  • shockwave player 8.5.1.106,
  • shockwave player 8.5.321,
  • shockwave player 8.5.323,
  • shockwave player 8.5.324,
  • shockwave player 8.5.325,
  • shockwave player 9,
  • shockwave player 9.0.383,
  • shockwave player 9.0.432
Technical Analysis