Adobe.Shockwave.Player.Dir.File.Invalid.Pointer.Code.Execution
Description
This indicates an attack attempt to exploit an invalid pointer vulnerability in Adobe Shockwave Player.
The vulnerability results from an insecure code in the DLL responsible for parsing DIR files. It can be exploited by sending a crafted ".dir" file which is opened by the vulnerable software.
Affected Products
Shockwave Player 11.5.1.601 and earlier versions
Impact
Remote attackers can gain control of vulnerable systems.
Recommended Actions
Please refer to the following website for patches:
http://www.adobe.com/support/security/bulletins/apsb09-16.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |