Adobe patches 6 critical security flaws in Shockwave

Summary:Adobe releases a new version of Shockwave, patching 6 critical security flaws.

Today, Adobe released Shockwave Player that patches 6 critial security flaws in Shockwave which could allow a malicious attacker the capability to inject malicious code into a system.

CVEs for the patched vulnerabilities - CVE-2012-4172, CVE-2012-4173, CVE-2012-4174, CVE-2012-4175, CVE-2012-4176, CVE-2012-5273.

Next to updating to the latest Shockwave version, users are advised to ensure that they're not running outdated versions of their third-party software, browser plugins, to ensure that the URL they're about to visit is a trusted one, and take advantage of application sandboxing techniques to increase the probability for a successful prevention and contamination of a particular security threat.

Find out more about Dancho Danchev at his LinkedIn profile.

Topics: Security


Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog sharing real-time threats intelligence data with the rest of the community... Full Bio

zdnet_core.socialButton.googleLabel Contact Disclosure

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.