Adobe Shockwave Player Memory Corruption Vulnerability Mar14 (Windows) Network Vulnerability

Summary

This host is installed with Adobe Shockwave Player and is prone to memory corruption vulnerability.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause memory corruption and compromise a user's system. Impact Level: System/Application

Solution

Upgrade to version 12.1.0.150 or later, For updates refer to http://get.adobe.com/shockwave

Insight

Flaw is due to an unspecified error.

Affected

Adobe Shockwave Player version before 12.1.0.150 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://helpx.adobe.com/security/products/shockwave/apsb14-10.html
http://secunia.com/advisories/57277
http://www.osvdb.com/104408
https://www.hkcert.org/my_url/en/alert/14031701

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0505

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Windows)
Adobe Air Multiple Vulnerabilities June-2012 (Windows)
Adobe Acrobat Multiple Vulnerabilities - 01 May14 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Jan15 (Windows)
Adobe Air and Flash Player Multiple Vulnerabilities August-2011 (Windows)

Take action and discover your vulnerabilities