Adobe Shockwave Player Director File DOS Attempt

Overview

» IDS/IPS Signatures

Security Sites

iPolicy Networks Security Advisory


Date Discovered:	05/13/2010
Severity:	High
Operating Systems Affected:	All supported OS
Application Affected:	Adobe Shockwave Player 11.5.7.609 and prior
Identifiers:	CVE-2010-1280

Synopsis

Memory corruption vulnerability found in Adobe Shockwave Player that allows remote attacker to conduct denial of service attack

Recommended Actions

Update the patches as guided by vendor at :
http://get.adobe.com/shockwave/

Threat Analysis

Adobe Shockwave Player is a multimedia program. User can view movie, presentations, animations, and play games using this program over web. It can be installed as browser plug-in to provide such functionality to the users.

There is memory corruption vulnerability found in it that allows remote attacker to conduct denial of service attack. This issue lies as application fails to properly handle special type of .dir file.

Attacker can exploit this issue via hosting the malicious director (.dir) file on web server and entice the user to view this file. Issue triggers once the user open this file with respect to the vulnerable version of the application.

References

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1280
http://www.vupen.com/english/advisories/2010/1128
http://secunia.com/advisories/38751

Write-up by: Vikrant