CVE-2010-2867

Name of the Vulnerable Software and Affected Versions Adobe Shockwave Player versions prior to 11.5.8.612

Description The issue is related to a "pointer offset vulnerability" in the DIRAPIX.dll component. It does not properly handle a certain return value associated with the rcsL chunk in a Director movie. This can allow remote attackers to cause a denial of service (heap memory corruption) or execute arbitrary code via a crafted movie.

Recommendations For Adobe Shockwave Player versions prior to 11.5.8.612, update to version 11.5.8.612 or later to resolve the issue.