Posts Tagged ‘vulnerability in Shockwave’

Adobe Logo

Vulnerability in Shockwave

Adobe has promised in February to eliminate dangerous vulnerability in its software Shockwave.

The identified vulnerability allows an attacker to embed multimedia content Shockwave-instructions to download the software to the user’s computer to run them on the victim computer. It is noted that this vulnerability exists in the system has at least two years.

In US CERT, warned about the vulnerability, saying that Shockwave allows attackers without notice to place malicious code on the system and implement it, which gives them almost unlimited power, the attacks. US CERT first notified Adobe about the problem more October 27, 2010, but Adobe claims that the issue will be closed until next update Shockwave, scheduled for February 12.

In Adobe say that today they do not know if there are any active exploits working on this vulnerability, respectively, for the affected users while not dangerous, say in the press service of the company. (more…)