Adobe Shockwave Player vulnerabilities

CVE-2013-3360 [CRITICAL] CVE-2013-3360: Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3359.

CVE-2013-3359 [CRITICAL] CWE-119 CVE-2013-3359: Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 12.0.4.144 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3360.

CVE-2013-3348 [CRITICAL] CWE-119 CVE-2013-3348: Adobe Shockwave Player before 12.0.3.133 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 12.0.3.133 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

CVE-2013-1386 [CRITICAL] CVE-2013-1386: Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1384.

CVE-2013-1383 [CRITICAL] CWE-119 CVE-2013-1383: Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary co Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code via unspecified vectors.

CVE-2013-1384 [CRITICAL] CVE-2013-1384: Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1386.

CVE-2013-1385 [CRITICAL] CWE-264 CVE-2013-1385: Adobe Shockwave Player before 12.0.2.122 does not prevent access to address information, which makes Adobe Shockwave Player before 12.0.2.122 does not prevent access to address information, which makes it easier for attackers to bypass the ASLR protection mechanism via unspecified vectors.

CVE-2013-0635 [CRITICAL] CWE-119 CVE-2013-0635: Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

CVE-2013-0636 [CRITICAL] CWE-119 CVE-2013-0636: Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors.

CVE-2012-6271 [CRITICAL] CVE-2012-6271: Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitra Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitrary signed Xtras via a Shockwave movie that contains an Xtra URL, as demonstrated by a URL for an outdated Xtra.

CVE-2012-6270 [CRITICAL] CVE-2012-6270: Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shock Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shockwave Player 10.4.0.025 compatibility feature via a crafted HTML document that references Shockwave content with a certain compatibility parameter, related to a "downgrading" attack.

CVE-2012-5273 [CRITICAL] CVE-2012-5273: Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary co Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4173, CVE-2012-4174, and CVE-2012-4175.

CVE-2012-4174 [CRITICAL] CVE-2012-4174: Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary co Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4173, CVE-2012-4175, and CVE-2012-5273.

CVE-2012-4175 [CRITICAL] CVE-2012-4175: Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary co Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4173, CVE-2012-4174, and CVE-2012-5273.

CVE-2012-4173 [CRITICAL] CVE-2012-4173: Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary co Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4174, CVE-2012-4175, and CVE-2012-5273.

CVE-2012-4172 [CRITICAL] CWE-119 CVE-2012-4172: Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary co Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4173, CVE-2012-4174, CVE-2012-4175, and CVE-2012-5273.

CVE-2012-4176 [CRITICAL] CWE-20 CVE-2012-4176: Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors.

CVE-2012-2045 [CRITICAL] CVE-2012-2045: Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2043, CVE-2012-2044, CVE-2012-2046, and CVE-2012-2047.

CVE-2012-2046 [CRITICAL] CVE-2012-2046: Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2043, CVE-2012-2044, CVE-2012-2045, and CVE-2012-2047.

CVE-2012-2044 [CRITICAL] CVE-2012-2044: Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denia Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2043, CVE-2012-2045, CVE-2012-2046, and CVE-2012-2047.