SB2012122001 - Multiple vulnerabilities in Adobe Shockwave Player

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Buffer overflow (CVE-ID: CVE-2013-0635)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

2) Stack-based buffer overflow (CVE-ID: CVE-2013-0636)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing unspecified vectors. A remote unauthenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

3) Input validation error (CVE-ID: CVE-2012-6271)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitrary signed Xtras via a Shockwave movie that contains an Xtra URL, as demonstrated by a URL for an outdated Xtra.

4) Input validation error (CVE-ID: CVE-2012-6270)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shockwave Player 10.4.0.025 compatibility feature via a crafted HTML document that references Shockwave content with a certain compatibility parameter, related to a "downgrading" attack.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

• http://www.adobe.com/support/security/bulletins/apsb13-06.html
• http://www.us-cert.gov/cas/techalerts/TA13-043A.html
• http://www.kb.cert.org/vuls/id/323161
• http://www.kb.cert.org/vuls/id/519137
• http://www.kb.cert.org/vuls/id/546769