Intrusion Prevention

Adobe.Shockwave.Player.3D.Model.Memory.Disclosure

Description

This indicates an attack attempt against a Memory Disclosure vulnerability in Adobe Shockwave.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted DIR file. A remote attacker may be able to exploit this to gain information about the application's memory layout, leading to weaken security.

Affected Products

Adobe Shockwave player versions 12.0.2.122 and prior

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Upgrade to the latest version of Adobe Shockwave
http://www.adobe.com/support/downloads/

CVE References

CVE-2013-1385