Adobe.Shockwave.Player.ActiveX.PlayerVersion.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a Buffer Overflow vulnerability in Adobe ShockWave Player.
The vulnerability is caused by an error when the vulnerable ActiveX control handles a malformed value for the "PlayerVersion" property. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.

affected-products-logoAffected Products

Adobe ShockWave Player 11.5.1.601

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch available for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-11-22 15.729 Name:Adobe.
ShockWave.
Player.
ActiveX.
PlayerVersion.
Buffer.
Overflow:Adobe.
Shockwave.
Player.
ActiveX.
PlayerVersion.
Buffer.
Overflow