Adobe Shockwave Player 12.3.4.204 Remote Code Execution Vulnerability

Summary

Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

Credit:

The information has been provided by Honggang Ren
The original article can be found at: https://helpx.adobe.com/security/products/shockwave/apsb19-20.html


Details

Adobe Shockwave Player is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition. 

Vulnerable Systems:

  • Adobe Shockwave Player 12.3.4.204

CVE Information:

CVE-2019-7104

Disclosure Timeline:
Publish Date:05/23/2019

Categories: News