[SingCERT] Adobe Shockwave Player Multiple Bugs Let Remote Users Execute Arbitrary Code

Mailing List

[SingCERT] Adobe Shockwave Player Multiple Bugs Let Remote Users Execute Arbitrary Code

Last Updated on Wednesday, 09 November 2011 14:55

Attention: open in a new window.

[ Summary ]

Several vulnerabilities were reported in Adobe Shockwave. A remote, unauthenticated attacker can execute arbitrary code on a vulnerable system with the privileges of the target user.

By convincing a user to view a specially crafted document that supports embedded Shockwave (e.g., Microsoft Office document or HTML email message or attachment or HTML web page), an attacker can execute arbitrary code.

[ Affected Systems ]

Adobe Shockwave Player 11.6.1.629 and ealier versions

[ Solution/Workaround ]

Apply fix from vendor

[ Reference ]

• http://www.adobe.com/support/security/bulletins/apsb11-27.html

< Prev		Next >

Additional Information

About Us
FAQ
Disclaimer
Security Awareness

Search, View and Navigation

Mailing List

Archive

[SingCERT] Adobe Shockwave Player Multiple Bugs Let Remote Users Execute Arbitrary Code

Additional Information

Symantec Security Alerts