Adobe Shockwave Player <= 22.214.171.124 Memory Corruption RCE (APSB17-18)
High Nessus Plugin ID 100806
SynopsisThe remote Windows host contains a web browser plugin that is affected by a remote code execution vulnerability.
DescriptionThe version of Adobe Shockwave Player installed on the remote host is equal or prior to 126.96.36.199. It is, therefore, affected by an unspecified memory corruption issue due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to cause a denial of service condition or the execution of arbitrary code.
SolutionUpgrade to Adobe Shockwave Player version 188.8.131.52 or later.