RSS   Vulnerabilities for 'Shockwave'   RSS

2007-03-10
 
CVE-2007-1403

 

 
Multiple stack-based buffer overflows in an ActiveX control in SwDir.dll 10.1.4.20 in Macromedia Shockwave allow remote attackers to cause a denial of service (Internet Explorer 7 crash) and possibly execute arbitrary code via a long (1) BGCOLOR, (2) SRC, (3) AutoStart, (4) Sound, (5) DrawLogo, or (6) DrawProgress property value, different vectors than CVE-2006-6885.

 
2006-12-31
 
CVE-2006-6885

 

 
An ActiveX control in SwDir.dll in Macromedia Shockwave 10 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long string in the swURL attribute.

 
2003-04-22
 
CVE-2002-1467

 

 
Macromedia Flash Plugin before 6,0,47,0 allows remote attackers to bypass the same-domain restriction and read arbitrary files via (1) an HTTP redirect, (2) a "file://" base in a web document, or (3) a relative URL from a web archive (mht file).

 

 >>> Vendor: Macromedia 19 Products
Coldfusion server
Coldfusion
Dreamweaver
Matrix screen saver
Shockwave flash plugin
Studio
JRUN
Flash
Flash player
Shockwave flash
Sitespring
Shockwave
Coldfusion professional
Director
Contribute
Coldfusion fusebox
Breeze
Flash communication server
Flash media server


Copyright 2024, cxsecurity.com

 

Back to Top