According to “ZDNet”, Adobe Shockwave Player 12.0.7.148 and earlier versions for Windows and Macintosh are vulnerable to attack through a memory corruption vulnerabilities.
The vulnerabilities have an Adobe Priority Rating of 1, which Adobe explains as:
This update resolves vulnerabilities being targeted, or which have a higher risk of being targeted, by exploit(s) in the wild for a given product version and platform. Adobe recommends administrators install the update as soon as possible. (for example, within 72 hours).
The updated version of Shockwave Player is 12.0.9.149. Users may obtain it from http://get.adobe.com/shockwave/.
The vulnerabilities were found by Liangliang Song of Fortinet's FortiGuard Labs.
- 4