‫ Adobe Shockwave Player Multiple Vulnerabilities

IRCAD2012102266
ID: IRCAD2012102266
Release Date: 2012-10-24
Criticality level: Highly critical
 
Software:
Adobe Shockwave Player 11.x
 
Description:
Multiple vulnerabilities have been reported in Adobe Shockwave Player, which can be exploited by malicious people to compromise a user's system.
1) An unspecified error can be exploited to cause a buffer overflow.
2) An unspecified error can be exploited to cause a buffer overflow.
3) An unspecified error can be exploited to cause a buffer overflow.
4) An unspecified error can be exploited to cause a buffer overflow.
5) An unspecified error can be exploited to cause a buffer overflow.
6) An array-indexing error can be exploited to corrupt memory.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code by tricking a user into viewing specially crafted Director content.
The vulnerabilities are reported in versions 11.6.7.637 and prior for Windows and Macintosh.
 
Solution
Update to version 11.6.8.638.
 
References:
Adobe:
US-CERT VU#872545:
 
Secunia:
 
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 6 آبان 1391

امتیاز

امتیاز شما
تعداد امتیازها:0