CVE-2010-4196

Sažetak

The Shockwave 3d Asset module in Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors.

Reference

http://www.adobe.com/support/security/bulletins/apsb11-01.html
http://www.kb.cert.org/vuls/id/189929
http://www.securityfocus.com/bid/46338
http://www.securitytracker.com/id?1025056
http://www.vupen.com/english/advisories/2011/0335

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-02-2011 - 05:00

Objavljeno

10-02-2011 - 16:00