Adobe patches critical flaw in Shockwave Player

Memory corruption vulnerabilities in the Player could lead to complete system compromise. The new version is 12.0.9.149.

Adobe Shockwave Player 12.0.7.148 and earlier versions for Windows and Macintosh are vulnerable to attack through a memory corruption vulnerabilities.

The vulnerabilities have an Adobe Priority Rating of 1, which Adobe explains as:

    This update resolves vulnerabilities being targeted, or which have a higher risk of being targeted, by exploit(s) in the wild for a given product version and platform. Adobe recommends administrators install the update as soon as possible. (for example, within 72 hours).

The updated version of Shockwave Player is 12.0.9.149. Users may obtain it from http://get.adobe.com/shockwave/.

The vulnerabilities were found by Liangliang Song of Fortinet's FortiGuard Labs.

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.
See All