Memory Corruption Vulnerability in Adobe Shockwave Player
CVE-2014-0501

Currently unrated

Key Information:

Vendor: Adobe
Status: Shockwave Player
Vendor: CVE Published:; 12 February 2014

Summary

Adobe Shockwave Player versions before 12.0.9.149 are susceptible to a vulnerability that allows remote attackers to execute arbitrary code or trigger denial of service due to memory corruption. This flaw can be exploited through unspecified vectors, reflecting the need for users to update their software to mitigate potential risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/91008

vdb-entryx_refsource_XF

http://secunia.com/advisories/56740

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id/1029740

vdb-entryx_refsource_SECTRACK

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 12, 2014
Vulnerability Reserved
Dec 20, 2013