File size: 2805 K
Platform: Windows
Version: Shockwave 10.1.1.016
Browser: Netscape or Netscape-compatible and Internet Explorer
Date Posted: 3/14/2006
Language: English, French, German
Security Bulletin
APSB06-02 Improper Memory Access Vulnerability in Shockwave Player ActiveX installer
Originally posted: February 23, 2006
CVE-2005-3525
Platform: Windows
Summary
A vulnerability in the Shockwave Player ActiveX installer has been identified that could allow the execution of arbitrary code.
Solution
Adobe has fixed the issue in the Shockwave Player ActiveX installer. Since the vulnerability occurs in the installer, no action needs to be taken by current Macromedia Shockwave Player by Adobe customers. Customers downloading and installing the latest Shockwave Player are also no longer vulnerable with the updated Shockwave Player ActiveX installer.
Affected Software Versions : Shockwave Player 10.1.0.11 and earlier
Severity Rating: Adobe categorizes this as a critical update.
Download: Shockwave Player 10.1.1.016»