oval:org.mitre.oval:def:11285

Definition Id: oval:org.mitre.oval:def:11285

Oval ID:	oval:org.mitre.oval:def:11285
Title:	Denial of service (memory corruption) via a Director movie with a crafted rcsL chunk in the Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615
Description:	The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted rcsL chunk containing a field whose value is used as a pointer offset, as exploited in the wild in October 2010. NOTE: some of these details are obtained from third party information.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3653	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Shockwave Player
Definition Synopsis:
Version of either Macromedia or Adobe Shockwave Player is less than or equal to 11.5.8.612 Check if the version of Adobe Shockwave Player is less than or equal to 11.5.8.612 AND Check if the version of Macromedia Shockwave Player is less than or equal to 11.5.8.612 AND Adobe Shockwave Player is installed

Definition Id: oval:org.mitre.oval:def:5990

Oval ID:	oval:org.mitre.oval:def:5990
Title:	Adobe Shockwave Player is installed
Description:	The application Adobe Shockwave Player is installed.
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:adobe:shockwave_player	Version:	7
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008	Product(s):	Adobe Shockwave Player
Definition Synopsis:
Adobe Shockwave Player is installed AND Check if Macromedia Shockwave Player is installed
Referenced By:
oval:org.mitre.oval:def:11285