Article

Adobe issues alert on Shockwave Player 3D graphics flaws

Robert Westervelt, News Director

Adobe Systems Inc. issued a critical update to its Shockwave Player repairing eight vulnerabilities that could enable attackers to infect machines with data stealing malware.

In an update issued Wednesday, Adobe said the update affects Shockwave Player 11.5.2.602 and earlier versions for Windows and Macintosh. The software maker urged users to uninstall Shockwave Player and reinstall the latest version:

    Requires Free Membership to View

Shockwave version 11.5.6.606.

The updates resolve a buffer overflow vulnerability and multiple integer overflow vulnerabilities that could lead to code execution.

Shockwave Player is one of the most widely distributed pieces of software, with more than 450 million users. Danish vulnerability clearinghouse, Secunia Research gave the Shockwave Player flaws a highly critical rating. The errors can be exploited when malicious code forces the player to render 3D graphics models. The issues were discovered by Secunia researcher Alin Rad Pop.


There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: