Adobe patches critical flaw in Shockwave Player

Summary:Memory corruption vulnerabilities in the Player could lead to complete system compromise. The new version is 12.0.9.149.

Adobe Shockwave Player 12.0.7.148 and earlier versions for Windows and Macintosh are vulnerable to attack through a memory corruption vulnerabilities.

The vulnerabilities have an Adobe Priority Rating of 1, which Adobe explains as:

    This update resolves vulnerabilities being targeted, or which have a higher risk of being targeted, by exploit(s) in the wild for a given product version and platform. Adobe recommends administrators install the update as soon as possible. (for example, within 72 hours).

The updated version of Shockwave Player is 12.0.9.149. Users may obtain it from http://get.adobe.com/shockwave/.

The vulnerabilities were found by Liangliang Song of Fortinet's FortiGuard Labs.

Topics: Security

About

Larry Seltzer has long been a recognized expert in technology, with a focus on mobile technology and security in recent years. He was most recently Editorial Director of BYTE, Dark Reading and Network Computing at UBM Tech. Prior to that he spent over a decade consulting and writing on technology subjects, primarily in the area of sec... Full Bio

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.