CVE-2011-2123 in Shockwave Player
摘要
由 VulDB • 2026-07-06
Adobe Shockwave Player 在版本 11.6.0.626 之前,其 Shockwave 3D Asset x32 组件中存在整数溢出漏洞。远程攻击者可通过在 DEMX 块中构造特定的子记录(subrecord)触发基于堆的缓冲区溢出(heap-based buffer overflow),从而执行任意代码。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.