:: Descrizione del problema:
Sono state riscontrate vulnerabilita’ multiple in Adobe Shockwave Player, che potrebbero essere sfruttate per compromettere un sistema utente.
Per una descrizione completa delle vulnerabilita’ fare riferimento alla segnalazione ufficiale di Adobe.
Le vulnerabilita’ sono riportate nelle versioni del software, sia per Windows che per Macintosh, precedenti alla 11.5.8.612
:: Software interessati:
Adobe Shockwave Player 11.x
:: Impatto:
Esecuzione di codice arbitrario
Compromissione del sistema
:: Soluzione:
Aggiornare alla versione 11.5.8.612 o successive:
:: Riferimenti:
Adobe:
http://www.adobe.com/support/security/bulletins/apsb10-20.html
Secunia:
http://secunia.com/advisories/41065/
Mitre CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2863
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2864
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2865
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2866
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2867
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2868
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2869
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2870
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2871
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2872
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2873
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2874
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2875
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2876
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2877
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2878
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2879
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2880
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2881
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2882