Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 04/11/2009 Updated: 19/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Adobe Shockwave Player prior to 11.5.2.602 allows remote malicious users to execute arbitrary code via a crafted web page that triggers memory corruption, related to an "invalid string length vulnerability." NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe shockwave player 10.1.0.11
adobe shockwave player 1.0
adobe shockwave player 9
adobe shockwave player
adobe shockwave player 11.5.0.596
adobe shockwave player 5.0
adobe shockwave player 6.0
adobe shockwave player 2.0
adobe shockwave player 3.0
adobe shockwave player 4.0
adobe shockwave player 11.5.0.595
adobe shockwave player 11.0.0.456
adobe shockwave player 8.0
adobe shockwave player 8.5.1

CWE-399 http://securitytracker.com/id?1023123 http://www.securityfocus.com/bid/36905 http://www.adobe.com/support/security/bulletins/apsb09-16.html http://www.vupen.com/english/advisories/2009/3134 https://exchange.xforce.ibmcloud.com/vulnerabilities/54121 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6395 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-3466

Vulnerability Summary

References

Vulmon Search

About

Products

Connect