Release date:
Updated on:
Affected Systems:
Adobe Shockwave Player <= 11.5.7. 609
Description:
--------------------------------------------------------------------------------
Bugtraq id: 66182
CVE (CAN) ID: CVE-2014-0505
Adobe Shockwave Player is a software used to play web content created using Macromedia and Adobe ctor.
Adobe Shockwave Player 12.0.9.149 and earlier versions have the Remote Memory Corruption Vulnerability. Attackers can exploit this vulnerability to execute arbitrary code in the context of affected application users.
<* Source: Honggang Ren
Link: http://helpx.adobe.com/security/products/shockwave/apsb14-10.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Adobe
-----
Adobe has released a Security Bulletin (apsb14-10) and patches for this:
Apsb14-10: Security update available for Adobe Shockwave Player
Link: http://helpx.adobe.com/security/products/shockwave/apsb14-10.html