Threat Encyclopedia

Adobe.Shockwave.Player.ActiveX.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a buffer-overflow vulnerability in Adobe ShockWave Player.
The vulnerability is caused by an error when the vulnerable ActiveX control handles a malformed value for the "PlayerVersion" property. It allows a remote attacker to execute arbitrary code via sending a crafted web page.

affected-products-logoAffected Products

Adobe ShockWave Player 11.5.1.601

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are not aware of any patches supplied by the vendor.

CVE References

CVE-2009-3244