CVE-2010-4196 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 93%

Affected Products (NVD)

Vendor	Product	Version
adobe	shockwave_player	𝑥 ≤ 11.5.9.615
adobe	shockwave_player	1.0
adobe	shockwave_player	2.0
adobe	shockwave_player	3.0
adobe	shockwave_player	4.0
adobe	shockwave_player	5.0
adobe	shockwave_player	6.0
adobe	shockwave_player	8.0
adobe	shockwave_player	8.0.196
adobe	shockwave_player	8.0.196a:a
adobe	shockwave_player	8.0.204
adobe	shockwave_player	8.0.205
adobe	shockwave_player	8.5.1
adobe	shockwave_player	8.5.1.100
adobe	shockwave_player	8.5.1.103
adobe	shockwave_player	8.5.1.105
adobe	shockwave_player	8.5.1.106
adobe	shockwave_player	8.5.321
adobe	shockwave_player	8.5.323
adobe	shockwave_player	8.5.324
adobe	shockwave_player	8.5.325
adobe	shockwave_player	9.0.383
adobe	shockwave_player	9.0.432
adobe	shockwave_player	10.0.0.210
adobe	shockwave_player	10.0.1.004
adobe	shockwave_player	10.1.0.11
adobe	shockwave_player	10.1.0.011
adobe	shockwave_player	10.1.1.016
adobe	shockwave_player	10.1.4.020
adobe	shockwave_player	10.2.0.021
adobe	shockwave_player	10.2.0.022
adobe	shockwave_player	10.2.0.023
adobe	shockwave_player	11.0.0.456
adobe	shockwave_player	11.0.3.471
adobe	shockwave_player	11.5.0.595
adobe	shockwave_player	11.5.0.596
adobe	shockwave_player	11.5.1.601
adobe	shockwave_player	11.5.2.602
adobe	shockwave_player	11.5.6.606
adobe	shockwave_player	11.5.7.609
adobe	shockwave_player	11.5.8.612

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://www.adobe.com/support/security/bulletins/apsb11-01.html

http://www.kb.cert.org/vuls/id/189929

http://www.securityfocus.com/bid/46338

http://www.securitytracker.com/id?1025056

http://www.vupen.com/english/advisories/2011/0335

http://www.adobe.com/support/security/bulletins/apsb11-01.html

http://www.kb.cert.org/vuls/id/189929

http://www.securityfocus.com/bid/46338

http://www.securitytracker.com/id?1025056

http://www.vupen.com/english/advisories/2011/0335