Adobe Shockwave Player Multiple Memory Corruption Vulnerabilities Feb14 (Windows) Network Vulnerability

Summary

This host is installed with Adobe Shockwave Player and is prone to multiple memory corruption vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause memory corruption and compromise a user's system. Impact Level: System/Application

Solution

Upgrade to version 12.0.9.149 or later, For updates refer to http://get.adobe.com/shockwave

Insight

Flaws are due to multiple unspecified errors.

Affected

Adobe Shockwave Player version before 12.0.9.149 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://helpx.adobe.com/security/products/shockwave/apsb14-06.html
http://secunia.com/advisories/56740
http://www.osvdb.com/103157
http://www.osvdb.com/103158

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0500, CVE-2014-0501

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Media Server multiple vulnerabilities
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Windows)
Adobe Air Remote Code Execution Vulnerability -June13 (Mac OS X)
Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X)
Adobe AIR Multiple Vulnerabilities -02 April 13 (Mac OS X)

Take action and discover your vulnerabilities