The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

vulnerability note CVE-2013-5333 CVE-2013-5334

Adobe Shockwave Player: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of Adobe Shockwave Player.
Impacted software: Shockwave Player.
Severity of this computer vulnerability: 4/4.
Consequences of an attack: user access/rights.
Attacker's origin: document.
Number of vulnerabilities in this bulletin: 2.
Creation date: 10/12/2013.
Références of this announce: APSB13-29, BID-64197, BID-64200, CERTA-2013-AVI-661, CVE-2013-5333, CVE-2013-5334, VIGILANCE-VUL-13924.

Description of the vulnerability

Several vulnerabilities were announced in Adobe Shockwave Player.

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:4/4; BID-64197, CVE-2013-5333]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:4/4; BID-64200, CVE-2013-5334]
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a network vulnerability workaround. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The Vigil@nce vulnerability database contains several thousand vulnerabilities. Each administrator can customize the list of products for which he wants to receive vulnerability alerts.