Intrusion Prevention

Adobe.Shockwave.Player.Multiple.Code.Execution

Description

This indicates an attempt to exploit a Memory Corruption vulnerability in Adobe Shockwave Player.
This vulnerability is due to an error that occurs when the vulnerable software handles a malformed .DIR file. An attacker may exploit this to execute arbitrary code via a crafted .DIR file.

Affected Products

Adobe Shockwave player 11.6.3.634 and before

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's advisory for updates:
http://www.adobe.com/support/security/bulletins/apsb12-13.html

CVE References

CVE-2012-2033 CVE-2012-2032