Intrusion Prevention

Adobe.Shockwave.Player.Physics.Engine.Stack.Buffer.Overflow

Description

This indicates an attack attempt against a Memory Disclosure vulnerability in Adobe Shockwave.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted DIR file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted DIR file.

Affected Products

Adobe Shockwave player versions 11.6.5.635 and prior

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version of Adobe Shockwave
http://www.adobe.com/support/downloads/