Proactive IT Security

Home > Security Center > Security articles > 2010 > Critical vulnerability in Adobe Shockwave Player (UPDATED)

Critical vulnerability in Adobe Shockwave Player (UPDATED)

Print page

RSS FEEDS

Latest Security articles

Latest Blog items

Latest News

Latest Support issues

Current Virus threats

[Software advisories]

First published: 2010-10-22
Updated: 2010-10-29

A critical vulnerability has been identified in Adobe Shockwave Player 11.5.8.612 and earlier versions. Details about the vulnerability has been published on the Internet, and malware that utilizes this may be expected to appear.

Critical is Adobe's highest vulnerability rating and could when exploited allow malicious native-code to execute, potentially without a user being aware.

Currently no security update for this issue is available.

More information is available in Adobe's security advisory 10-04.

Norman will update this security advisory when more information is available.

Update 2010-10-29

Adobe has published an update (Shockwave Player 11.5.9.615) that solves several vulnerabilities.

More information in Adobe's security bulletin 10-25.

Norman recommends that users upgrade to the most recent version of Adobe Shockwave Player.