CVE-2011-2123
Description
Integer overflow in the Shockwave 3D Asset x32 component in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary code via a crafted subrecord in a DEMX chunk, which triggers a heap-based buffer overflow.
Risk Information
Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
12.903
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 1.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.0.0.210 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.0.1.004 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.1.0.011 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.1.0.11 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.1.1.016 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.1.4.020 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.2.0.021 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.2.0.022 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 10.2.0.023 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.0.0.456 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.0.3.471 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.0.595 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.0.596 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.1.601 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.2.602 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.6.606 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.7.609 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.8.612 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.9.615 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 11.5.9.620 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 2.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 3.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 4.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 5.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 6.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.0 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.0.196 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.0.196a | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.0.204 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.0.205 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.1 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.1.100 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.1.103 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.1.105 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.1.106 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.321 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.323 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.324 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 8.5.325 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 9 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 9.0.383 | Windows |
| Multiple Vulnerabilities are affected in Adobe Shockwave Player 9.0.432 | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
| PATCH-309312 | Adobe Shockwave Player (12.3.5.205) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234