Adobe Shockwave Player <= 220.127.116.11 Multiple Vulnerabilities (APSB13-12) (Mac OS X)
High Nessus Plugin ID 80184
SynopsisThe remote Mac OS X host contains a web browser plugin that is affected by multiple vulnerabilities.
DescriptionThe remote Mac OS X host contains a version of Adobe Shockwave Player that is equal to or prior than 18.104.22.168. It is, therefore, affected by the following vulnerabilities :
- An unspecified buffer overflow exists. (CVE-2013-1383)
- Two unspecified memory corruption errors exist.
- A memory leak error exists that weakens address space randomization. (CVE-2013-1385)
A remote attacker can exploit these issues by tricking a user into viewing a malicious Shockwave file, resulting in arbitrary code execution.
SolutionUpgrade to Adobe Shockwave Player 22.214.171.124 or later.