Intrusion Prevention

Adobe.Shockwave.Dir.File.Remote.Code.Execution

Description

This indicates an attempt to exploit a remote Code Execution vulnerability in Adobe Shockwave Player.
This vulnerability is due to an error that occurs when the vulnerable software handles a malformed .DIR file. An attacker may exploit this to execute arbitrary code via a crafted .DIR file.

Affected Products

Adobe Shockwave player 11.6.8.638 and earlier versions

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's advisory for updates:
http://www.adobe.com/support/security/bulletins/apsb13-06.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2024-09-02	28.856	Modified	Name:Adobe. Shockwave. Player. Dir. File. Remote. Code. Execution:Adobe. Shockwave. Dir. File. Remote. Code. Execution

References

http://www.adobe.com/support/security/bulletins/apsb13-06.html

ID	33827
Created	Nov 29, 2012
Updated	Aug 29, 2024
CVE ID
Risk
Exploit Prediction Score	17.09%
Default Action	drop
Active
Affected OS	All
Affected App	Adobe
Profile Type	BufferErrors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Adobe.Shockwave.Dir.File.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Adobe.Shockwave.Dir.File.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Threat Intelligence
Center