: skip to content : Home : Uni : Students : Research : Community : News : Events
150 years of Achievement: image of university student
Faculties : A-Z Directory : Library
  • IT Security Links
    • University IT Security Alerts
-----------

ITSS-Advisory : MEDIUM : Adobe : Shockwave Player : Arbitrary Code Execution

THREAT LEVEL
============
Medium.

INFORMATION
===========
On 28 Jul 2009, Adobe released a security update for Shockwave Player.
This version fixes a vulnerability related to the issue announced in
Microsoft Security Bulletin MS09-035.

More information is available at:
- http://www.adobe.com/support/security/bulletins/apsb09-11.html
- http://www.microsoft.com/technet/security/Bulletin/MS09-035.mspx

A separate security bulletin from Adobe available at:
http://www.adobe.com/support/security/advisories/apsa09-04.html
advises that Flash Player 9.0.159.0 and 10.0.22.87 and earlier are
similarly vulnerable. Adobe advises that a fix for Flash Player should
be available around 30 July 2009.

AFFECTED PLATFORMS
==================
Computers of various Windows operating systems running Adobe Shockwave
Player 11.5.0.600 and earlier.

ACTION
======
Administrators of affected computers are advised to review the bulletins,
test and apply relevant updates.

The link to update Shockwave Player is available at:
http://www.adobe.com/
top of page

Contact Us : Disclaimer & Copyright : Privacy