Vulnerability Management

Adobe issues security fixes for Shockwave Player


Adobe has issued a security update for its Shockwave Player after discovering a "critical" vulnerability.

The bug, CVE-2014-0505, affects Shockwave Player and earlier versions that run on the Windows and Mac operating systems, according to a recent security bulletin. The update addresses a memory corruption flaw which, if leveraged, could lead to remote code execution.

The vulnerability, discovered by Honggang Ren of Fortinet's FortiGuard Labs, was given a priority rating of 2, which indicates that there are “currently no known exploits.” Adobe urges users to update to the version via the instructions provided in its security bulletin.

On Tuesday Adobe issued security fixes for two non-critical vulnerabilities affecting its Flash Player.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.