VUPEN Vulnerability Research Team discovered a critical vulnerability in Adobe Shockwave Player. This vulnerability is caused due to a memory corruption error when processing 0xFFFFFF49 3D blocks within Director files, which could be exploited by attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page. Versions prior to 11.5.7.609 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/89493/adobe3dblock-exec.txt
Source: https://packetstormsecurity.com/files/89493/Adobe-Shockwave-0xFFFFFF49-3D-Block-Code-Execution-Vulnerability.html