Shockwave Player < 126.96.36.1991 Multiple Vulnerabilities (APSB09-11)
High Nessus Plugin ID 40421
SynopsisThe remote Windows host contains an Internet Explorer plugin which uses a vulnerable version of the Microsoft Active Template Library (ATL).
DescriptionThe remote Windows host contains a version of Adobe's Shockwave Player that is earlier than 188.8.131.521. Such versions were compiled against a version of Microsoft's Active Template Library (ATL) that contained a vulnerability. If an attacker can trick a user of the affected software into opening such a file, this issue could be leveraged to execute arbitrary code with the privileges of that user.
SolutionUninstall the Internet Explorer version of Shockwave Player version 184.108.40.2060 and earlier, restart the system, and then install version 220.127.116.111 or later.