Macromedia Schockwave Player - Security Update - 03/14/2006

Discussion in 'news, general information and FAQs' started by NICK ADSL UK, Mar 15, 2006.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,218
    Location:
    UK
    Please note this was first posted by Chachazz in updates on the 03/14/2006

    Shockwave Player 10.1.1.016 for Windows
    File size: 2805 K
    Platform: Windows
    Version: Shockwave 10.1.1.016
    Browser: Netscape or Netscape-compatible and Internet Explorer
    Date Posted: 3/14/2006
    Language: English, French, German

    Security Bulletin
    APSB06-02 Improper Memory Access Vulnerability in Shockwave Player ActiveX installer
    Originally posted: February 23, 2006
    CVE-2005-3525
    Platform: Windows

    Summary
    A vulnerability in the Shockwave Player ActiveX installer has been identified that could allow the execution of arbitrary code.

    Solution
    Adobe has fixed the issue in the Shockwave Player ActiveX installer. Since the vulnerability occurs in the installer, no action needs to be taken by current Macromedia Shockwave Player by Adobe customers. Customers downloading and installing the latest Shockwave Player are also no longer vulnerable with the updated Shockwave Player ActiveX installer.
    Affected Software Versions : Shockwave Player 10.1.0.11 and earlier
    Severity Rating: Adobe categorizes this as a critical update.

    Download: Shockwave Player 10.1.1.016»
     
Loading...
Thread Status:
Not open for further replies.