Summary
This host is installed with Adobe Shockwave Player and is prone to multiple code execution and denial of service vulnerabilities.
Impact
Successful exploitation will allow attackers to execute arbitrary code or to cause a denial of service.
Impact Level: Application/System
Solution
Upgrade to Adobe Shockwave Player version 11.6.5.635 or later, For updates refer to http://get.adobe.com/shockwave/otherversions/
Insight
Multiple flaws are due to
- An error within the IMLLib, DPLib and IMLLib modules when parsing a '.dir'.
- An unspecified errors.
Affected
Adobe Shockwave Player Versions prior to 11.6.5.635 on Mac OS X
References
Severity
Classification
-
CVE CVE-2012-2029, CVE-2012-2030, CVE-2012-2031, CVE-2012-2032, CVE-2012-2033 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Vulnerabilities - Mac OS X
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)
- Adobe Air and Flash Player Multiple Vulnerabilities August-2011 (Windows)
- Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Mac OS X)
- Adobe Air Multiple Vulnerabilities - November12 (Windows)