Shockwave Player <= Unspecified Memory Corruption Vulnerabilities (APSB14-10)

This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.

Synopsis :

The remote Windows host contains a web browser plugin that is affected
by a memory corruption vulnerability.

Description :

The remote Windows host contains a version of Adobe's Shockwave Player
that is prior to or equal to It is, therefore, potentially
affected by an unspecified memory corruption vulnerability. A remote
attacker could exploit this issue by tricking a user into viewing a
malicious Shockwave file, resulting in arbitrary code execution.

See also :

Solution :

Upgrade to Adobe Shockwave Player or later.

Risk factor :

High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 72983 ()

Bugtraq ID: 66182

CVE ID: CVE-2014-0505

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now