CVE-2010-0128

CVE Database · CVE-2010-0128

CVE-2010-0128

· N/AModified

CVSS v3.1

N/A

EPSS

4.99%

Published

May 13, 2010

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation.

Weaknesses (CWE)

CWE-787

Affected Products (4)

adobe · director (up to 11.5.7.609)vulnerable

adobe · shockwave_playervulnerable

apple · macos

microsoft · windows

References (16)

http://secunia.com/advisories/38751

Broken LinkVendor Advisory

http://secunia.com/secunia_research/2010-19/

Broken LinkVendor Advisory