Adobe.Shockwave.Player.LNAM.Chunk.Processing.Buffer.Overflow
Description
This indicates an attack attempt against a buffer-overflow vulnerability in Adobe Shockwave Player.
The vulnerability is due to a stack-based buffer-overflow when processing maliciously crafted DIR files containing Lnam Chunks. A remote attacker can exploit this vulnerability by enticing a target user to visit a maliciously crafted web site.
Affected Products
Adobe Shockwave Player 11.5.7 .609
Adobe Shockwave Player 11.5.6 .606
Adobe Shockwave Player 11.5.2 .606
Adobe Shockwave Player 11.5.2 .602
Adobe Shockwave Player 11.5.1 .601
Adobe Shockwave Player 11.5 .601
Adobe Shockwave Player 11.5 .600
Adobe Shockwave Player 11.5 .596
Adobe Shockwave Player 11.5.8.612
Adobe Shockwave Player 11.5.0.595
Adobe Shockwave Player 11.0.0.456
Adobe Shockwave Player 11
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the patch supplied by the vendor:
http://www.adobe.com/support/security/bulletins/apsb10-25.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |