Adobe fixes critical Shockwave Flash Player flaw

By SearchSecurity.com Staff 25 Jun 2009 | SearchSecurity.com

Digg This!     StumbleUpon     Del.icio.us

Adobe Systems Inc. is warning customers about a critical flaw in Shockwave Player that could be used by an attacker to take complete control of a victim's machine.

The flaw is in Adobe Shockwave Player 11.5.0.596 and earlier versions. An error occurs when the player processes Shockwave Player 10 content and can be exploited to corrupt memory via a specially crafted Adobe Director file.

Adobe is urging users to uninstall versions prior to 11.5.0.600, restart their system and install version 11.5.0.600.

Danish vulnerability clearinghouse Secunia gave the flaw a highly critical rating. So far there have been no reports of exploits in the wild.

The vulnerability was discovered by security researcher Paul Kurczaba and reported to TippingPoint's Zero Day Initiative.

Tags: Securing Productivity Applications,  Security Patch Management,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Securing Productivity Applications Quiz: How to build secure applications How to detect software tampering Adobe fixes 29 flaws in Acrobat, Reader Adobe warns of critical update for Reader, Acrobat 9.1.3 Why should we place data files on a separate partition than the OS? Adobe updates ColdFusion, JRun, Flex Serious Adobe Flash flaw being exploited Adobe acknowledges serious Flash zero-day vulnerability Adobe issues security advisory for Flash zero-day flaw When to use the service features of the Metasploit hacking tool Security Patch Management Squad: Tokenization, Phishing and the Feds Should management processes change based on a patch release schedule? Should Windows Mobile updates come from Microsoft? Adobe updates ColdFusion, JRun, Flex Trusteer CEO criticizes Adobe, touts better patch deployments Patch management study shows IT taking significant risks Vulnerability mitigation study shows need for faster patching Microsoft to issue security report card, new tool at Black Hat How to manage patches for Adobe When is it suitable to remove Java updates?

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary sheepdip  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary