Adobe has released a security bulletin to address multiple vulnerabilities in Adobe Shockwave Player 11.6.7.637 and earlier versions for Windows and Macintosh. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.
US-CERT encourages users and administrators to review Adobe security bulletin APSB12-23 and update to Adobe Shockwave Player 11.6.8.638 to help mitigate the risks.
Additional information regarding CVE-2012-4172, CVE-2012-4173, CVE-2012-4174, CVE-2012-4175, and CVE-2012-4176 can be found in Vulnerability Note VU#872545.
This product is provided subject to this Notification and this Privacy & Use policy.