| VID |
50142 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Adobe Shockwave Player installed on the remote host is equal or prior to 12.2.9.199. It is, therefore, affected by an unspecified memory corruption vulnerability that could lead to code execution.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
https://helpx.adobe.com/security/products/shockwave/apsb17-40.html
* Platforms Affected:
Shockwave Player versions equal or prior to 12.2.9.199
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Shockwave Player (12.2.9.199 later), available from the Adobe Web site at http://get.adobe.com/shockwave/ |
| Related URL |
CVE-2017-11294 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
