This application requires Javascript for optimal performance.

Adobe Security Bulletin for August 24, 2010

The table below lists the vulnerabilities addressed by Adobe on August 24, 2010.
Adobe Vulnerability Identifier Adobe Bulletin DescriptionSeverityAffected SoftwareCVE ID
APSB10-20These vulnerabilities could allow an attacker to run malicious code on the affected system.CriticalShockwave Player CVE-2010-2863
CVE-2010-2864
CVE-2010-2865
CVE-2010-2866
CVE-2010-2867
CVE-2010-2868
CVE-2010-2869
CVE-2010-2870
CVE-2010-2871
CVE-2010-2872
CVE-2010-2873
CVE-2010-2874
CVE-2010-2875
CVE-2010-2876
CVE-2010-2877
CVE-2010-2878
CVE-2010-2879
CVE-2010-2880
CVE-2010-2881
CVE-2010-2882


Threat Remediation


Fortinet provides coverage on Adobe vulnerabilities since August 19,2010.

CVE NumberSignature Name
CVE-2010-2863Adobe.Shockwave.Player.Lrtx.Chunk.Code.Execution
[Previous Name: FG-VD-10-016-Adobe]
CVE-2010-2864Adobe.Shockwave.Director.Lscm.Chunk.Code.Execution
[Previous Name: FG-VD-10-017-Adobe]
CVE-2010-2865Adobe.Shockwave.Director.Lscm.Chunk.Code.DoS
[Previous Name: FG-VD-10-018-Adobe]
CVE-2010-2866Adobe.Shockwave.Director.tSAC.Chunk.Code.Execution
[Previous Name: Adobe.0day.24151]
CVE-2010-2867Adobe.Shockwave.Director.RcsL.Chunk.Pointer.Code.Execution
[Previous Name: Adobe.0day.24150]
CVE-2010-2868Adobe.Shockwave.Player.Dir.Media.File.Parsing.Memory.Corruption
[Previous Name: Adobe.0day.24155]
CVE-2010-2869Adobe.Shockwave.Player.Dir.Media.File.Parsing.Memory.Corruption
[Previous Name: Adobe.0day.24155]
CVE-2010-2870Adobe.Shockwave.Director.Mmap.Trusted.Chunk.Size.Code.Execution
[Previous Name: Adobe.0day.24153]
CVE-2010-2871Adobe.Shockwave.Director.Josh.Chunk.Code.Execution
[Previous Name: Adobe.0day.24158]
CVE-2010-2872Adobe.Shockwave.Player.IML32.Module.Memory.Corruption
[Previous Name: Adobe.0day.24160]
CVE-2010-2873Adobe.Shockwave.Player.DIRAPI.Module.Memory.Corruption
[Previous Name: Adobe.0day.24161]
CVE-2010-2874Adobe.Shockwave.Player.Dir.File.Parsing.Memory.Corruption
[Previous Name: Adobe.0day.24165]
CVE-2010-2875Adobe.Shockwave.Player.tSAC.Chunk.Memory.Corruption
[Previous Name: Adobe.0day.24152]
CVE-2010-2876Adobe.Shockwave.Player.Director.Record.Processing.Integer.Wrap
[Previous Name: Adobe.0day.24159]
CVE-2010-2877Adobe.Shockwave.CSWV.Chunk.Memory.Corruption
[Previous Name: Adobe.0day.24163]
CVE-2010-2878Adobe.Shockwave.Player.Dir.Parsing.Memory.Corruption
[Previous Name: Adobe.0day.24164]
CVE-2010-2879Adobe.Shockwave.Player.Dir.Parsing.Integer.Overflow
[Previous Name: Adobe.0day.24166]

For more information on new and enhanced signatures, visit the IPS Service Update History. If you require more information, contact the FortiGuard Team using our Contact Us web page.


Document History


Revision DateVersion Number
Tuesday, August 24 20101Initial Documentation.


Reference:

Acknowledgment:
  • Honggang Ren of Fortinet's FortiGuard Labs (CVE-2010-2863, CVE-2010-2864, CVE-2010-2865)