Shockwave Player < 184.108.40.2061 Multiple Vulnerabilities (APSB09-11)
High Nessus Plugin ID 40421
SynopsisThe remote Windows host contains an Internet Explorer plugin which uses a vulnerable version of the Microsoft Active Template Library (ATL).
DescriptionThe remote Windows host contains a version of Adobe's Shockwave Player that is earlier than 220.127.116.111. Such versions were compiled against a version of Microsoft's Active Template Library (ATL) that contained a vulnerability. If an attacker can trick a user of the affected software into opening such a file, this issue could be leveraged to execute arbitrary code with the privileges of that user.
SolutionUninstall the Internet Explorer version of Shockwave Player version 18.104.22.1680 and earlier, restart the system, and then install version 22.214.171.1241 or later.