Summary
This host is installed with Adobe Shockwave player and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code on the target system and corrupt system memory.
Solution
Upgrade to version 12.0.3.133 or later,
For updates refer to http://get.adobe.com/shockwave
Insight
Flaw is due to an error when parsing dir files
Affected
Adobe Shockwave Player before 12.0.3.133 on Windows
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-3348 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities -02 April 13 (Windows)
- Adobe AIR Multiple Vulnerabilities -01 April 13 (Windows)
- Adobe AIR Security Bypass Vulnerability Jan14 (Mac OS X)