Urgent – Adobe fixes five critical Shockwave flaws | IT PRO

Adobe fixes five critical Shockwave flaws Adobe’s multimedia web player is patched up for vulnerabilities a hacker could have exploited.

Adobe has released an update fixing five ‘critical’ vulnerabilities in its Shockwave player, said to be on 450 million internet-enabled desktops.

The vulnerabilities could have allowed an attacker who successfully exploited them to run malicious code.

There was an invalid index and an invalid strength length vulnerability, as well as two invalid pointer flaws.


See the full article at: Adobe fixes five critical Shockwave flaws | IT PRO
By Asavin Wattanajantra, 4 Nov 2009 at 15:51

Nicolas Joly of VUPEN security was credited for reporting the four issues and working with Adobe to protect customers.

The update also solves a boundary condition issue that could have lead to Denial of Service (DoS).

Shockwave Player is described as the ‘web standard for powerful multimedia playback’ by Adobe, and allows users who download it to see interactive web content such as business presentations, advertisements, entertainment and games.

The flaws can be patched by downloading the latest Shockwave update.

Leave a Reply

Your email address will not be published. Required fields are marked *

thirty one + = thirty eight