Adobe Shockwave Player <= 126.96.36.1998 Multiple Vulnerabilities (APSB13-06) (Mac OS X)
High Nessus Plugin ID 80183
SynopsisThe remote Mac OS X host contains a web browser plugin that is affected by multiple vulnerabilities.
DescriptionThe remote Mac OS X host contains a version of Adobe Shockwave Player that is equal to or prior than 188.8.131.528. It is, therefore, affected by the following vulnerabilities :
- An unspecified memory corruption error exists that allows a denial of service or arbitrary code execution.
- A stacked-based buffer overflow exists that allows code execution. (CVE-2013-0636)
A remote attacker can exploit these issues by tricking a user into viewing a malicious Shockwave file, resulting in arbitrary code execution.
SolutionUpgrade to Adobe Shockwave Player 184.108.40.206 or later.