This script is Copyright (C) 2010-2013 Tenable Network Security, Inc.
The remote Windows host contains a web browser plugin that is
affected by multiple vulnerabilities.
The remote Windows host contains a version of Adobe's Shockwave Player
that is earlier than 18.104.22.1682. Such versions are potentially
affected by the following issues :
- Multiple memory corruption issues exist that could lead
to arbitrary code execution. (CVE-2010-2863,
CVE-2010-2864, CVE-2010-2866, CVE-2010-2869,
CVE-2010-2870, CVE-2010-2871, CVE-2010-2872,
CVE-2010-2873, CVE-2010-2873, CVE-2010-2874,
CVE-2010-2875, CVE-2010-2876, CVE-2010-2877,
CVE-2010-2878, CVE-2010-2880, CVE-2010-2881,
- A pointer offset vulnerability exists that could lead to
code execution. (CVE-2010-2867)
- Multiple unspecified denial of service issues exist.
- An integer overflow vulnerability exists that could lead
to lead to code execution. (CVE-2010-2879)
See also :
Upgrade to Adobe Shockwave 22.214.171.1242 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true
Nessus Plugin ID: 48436 ()
CVE ID: CVE-2010-2863
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now