Detections
Analytics

CVE-2005-3525

high

Description

Stack-based buffer overflow in an ActiveX control for the installer for Adobe Macromedia Shockwave Player 10.1.0.11 and earlier allows remote attackers to execute arbitrary code via crafted large values for unspecified parameters.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24914

http://www.zerodayinitiative.com/advisories/ZDI-06-002.html

http://www.vupen.com/english/advisories/2006/0716

http://www.securityfocus.com/bid/16791

http://www.securityfocus.com/archive/1/425900/100/0/threaded

http://www.osvdb.org/23461

http://www.macromedia.com/devnet/security/security_zone/apsb06-02.html

http://www.kb.cert.org/vuls/id/437212

http://securitytracker.com/id?1015673

http://securityreason.com/securityalert/481

http://secunia.com/advisories/19009

Details

Source: Mitre, NVD

Published: 2005-12-31

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High