Adobe Shockwave 3D Two Code Execution Vulnerabilities

VUPEN Vulnerability Research Team discovered two critical vulnerabilities in Adobe Shockwave Player. These vulnerabilities are caused due to memory corruption errors when processing malformed 3D Director files, which could be exploited by attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page. Versions prior to 11.5.7.609 are affected.

You can download this advisory from the following link: https://packetstormsecurity.com/files/download/89491/adobe3d-exec.txt

Source: https://packetstormsecurity.com/files/89491/Adobe-Shockwave-3D-Two-Code-Execution-Vulnerabilities.html