Shockwave Player <= 18.104.22.1688 Multiple Vulnerabilities (APSB13-06)
High Nessus Plugin ID 64621
SynopsisThe remote Windows host contains a web browser plugin that is affected by multiple vulnerabilities.
DescriptionThe remote Windows host contains a version of Adobe's Shockwave Player that is equal to or earlier than 22.214.171.1248 and is, therefore, potentially affected by the following vulnerabilities :
- An unspecified memory corruption error exists that could lead to denial or potentially arbitrary code execution.
- A stacked-based buffer overflow exists that could lead to code execution. (CVE-2013-0636)
A remote attacker could exploit these issues by tricking a user into viewing a malicious Shockwave file, resulting in arbitrary code execution.
SolutionUpgrade to Adobe Shockwave Player 126.96.36.199 or later.