toggle

AAPL Stock: 441.35 ( + 1.69 )

http://www.macnn.com/articles/12/02/15/fixes.nine.security.holes.that.allow.remote.attack/

Adobe pushes 'critical' patch to Shockwave for PC, Mac users

updated 11:00 am EST, Wed February 15, 2012

 

Fixes nine security holes that allow remote attack


Adobe has identified nine "critical" vulnerabilities in Shockwave Player 11.6.3.633 and earlier versions for the Mac and Windows platforms that could allow attackers to run malicious code on the affected systems. The company is advising all users to update to the latest version for their system version, but only the new v11.6.4.634 is protected from the vulnerabilities, which revolve around a memory corruption issue in Shockwave 3D assets.

Adobe's Flash and Shockwave browser plug-ins suffered numerous security issues over the course of 2011, resulting in frequent patches and updates. The latest version of Shockwave addresses a heap overflow vulnerability as well, but all nine patched vulnerabilities give attackers the ability to execute code on affected machines.

The latest version of Shockwave Player is available here. Users on OS versions too old to run the latest Shockwave are advised to disable the plug-in entirely unless and until Adobe issues a patch for older versions.


by MacNN Staff

Post tools:

TAGS :

 security, software, Adobe

Related Articles

Recent Articles

toggle

Comments

  1. climacs

    Fresh-Faced Recruit

    Joined: Sep 2001

    +4
    02/15, 11:02am | report spam | Reply |

    here we go again

    .

  1. climacs

    Fresh-Faced Recruit

    Joined: Sep 2001

    +5
    02/15, 11:04am | report spam | Reply |

    better yet...

    Users on OS versions too old to run the latest Shockwave are advised to disable the plug-in entirely unless and until Adobe issues a patch for older versions.

    remove it from your computer entirely.

  1. facebook_Vincent

    Via Facebook

    Joined: Feb 2012

    +11
    02/15, 11:22am | report spam | Reply |

    Shockwave?

    I had no idea the Shockwave player even still existed.

  1. ricardogf

    Fresh-Faced Recruit

    Joined: Jan 2003

    +1
    02/15, 02:34pm | report spam | Reply |

    Huh?

    What's that c*** for again? I have no effing idea that I even use it nowadays...

  1. testudo

    Forum Regular

    Joined: Aug 2001

    0
    02/15, 03:18pm | report spam | Reply |

    not really

    Adobe's Flash and Shockwave browser plug-ins suffered numerous security issues over the course of 2011, resulting in frequent patches and updates.

    Security issues were found, but nothing says anyone suffered an attack because of all (or any) of them. They're "critical" because of the potential. Just like when Apple releases a security patch for OS X. Those patch 'critical' issues as well, in case of what 'potentially' can happen. At least Adobe releases the updates in a timely manner, instead of just holding onto patches for who knows how long while they wait for enough issues to warrant posting the update.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

MaxUpgrades MaxConnect for 2006-2008 Mac Pro

Nobody outside of Cupertino's privileged bunch knows the future of the Mac Pro line for sure. Despite Apple's reluctance to tell us wh ...

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

toggle

Most Commented

 

Popular News