Remote Code Execution Vulnerability in Adobe Shockwave Player
CVE-2014-0505

Currently unrated

Key Information:

Vendor: Adobe
Status: Shockwave Player
Vendor: CVE Published:; 14 March 2014

Summary

Adobe Shockwave Player versions prior to 12.1.0.150 are susceptible to a vulnerability that allows remote attackers to execute arbitrary code or cause a denial of service through memory corruption. Attackers can exploit this flaw via unspecified methods, potentially compromising the security of affected systems. It is crucial for users to update to the latest version of Adobe Shockwave Player to mitigate risk.

References

http://helpx.adobe.com/security/products/shockwave/apsb14...

x_refsource_CONFIRM

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 14, 2014
Vulnerability Reserved
Dec 20, 2013