iml32.dll in Adobe Shockwave Player prior to 11.5.7.609 does not validate a certain value from a file before using it in file-pointer calculations, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe shockwave_player |