CVE-2010-0128

HIGH Year: 2010
CVSS v2 Score
9.3
Critical
Weakness Type
CWE-787
View all →

Vulnerability Description

Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation.

Related Vulnerabilities

CVE-2016-9343

CRITICAL
CVSS:10.0(Critical)

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sen...

CWE-7872016

CVE-2017-2853

CRITICAL
CVSS:10.0(Critical)

An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow r...

CWE-7872017

CVE-2017-2868

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the NewProducerStream functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in...

CWE-7872017

CVE-2017-2869

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the OpenProducer functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code...

CWE-7872017

CVE-2018-10718

CRITICAL
CVSS:10.0(Critical)

Stack-based buffer overflow in Activision Infinity Ward Call of Duty Modern Warfare 2 before 2018-04-26 allows remote attackers to execute arbitrary code via crafted packets.

CWE-7872018

CVE-2018-17160

CRITICAL
CVSS:10.0(Critical)

In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bh...

CWE-7872018