Adobe Shockwave Player Multiple Vulnerabilities
Last Update Date:
28 Jan 2011
Release Date:
26 Aug 2010
4402
Views
RISK: Medium Risk
Multiple vulnerabilitieshave been identified in Adobe Shockwave Player, which could be exploited by remote attackers to compromise a vulnerable system. These issues are caused by memory corruptions and integer overflow errors when processing malformed Shockwave or Director files, which could be exploited by attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page.
Impact
- Remote Code Execution
System / Technologies affected
- Adobe Shockwave Player version 11.5.7.609 and prior
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to Adobe Shockwave Player version 11.5.8.612 :
- http://get.adobe.com/shockwave/
Vulnerability Identifier
- CVE-2010-2863
- CVE-2010-2864
- CVE-2010-2865
- CVE-2010-2866
- CVE-2010-2867
- CVE-2010-2868
- CVE-2010-2869
- CVE-2010-2870
- CVE-2010-2871
- CVE-2010-2872
- CVE-2010-2873
- CVE-2010-2874
- CVE-2010-2875
- CVE-2010-2876
- CVE-2010-2877
- CVE-2010-2878
- CVE-2010-2879
- CVE-2010-2880
- CVE-2010-2881
- CVE-2010-2882
Source
Related Link
Share with