Threat Encyclopedia

Adobe.Shockwave.Player.ActiveX.PlayerVersion.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a Buffer Overflow vulnerability in Adobe ShockWave Player.
The vulnerability is caused by an error when the vulnerable ActiveX control handles a malformed value for the "PlayerVersion" property. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.

affected-products-logoAffected Products

Adobe ShockWave Player 11.5.1.601

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch available for this issue.

CVE References

CVE-2009-3244