Given this announcement, we strongly recommend that users upgrade to the latest version ASAP. Companies with existing Enterprise licenses for Adobe Shockwave continue to receive support until the end of their current contracts.” Further, according to the Adobe notice, “Effective April 9, 2019, Adobe Shockwave will be discontinued and the Shockwave player for Windows will no longer be available for download. The CVE numbers assigned to these vulnerabilities are CVE-2019-7098, CVE-2019-7099, CVE-2019-7100, CVE-2019-7101, CVE-2019-7102, CVE-2019-7103, CVE-2019-7104.Īll seven of these vulnerabilities could lead to remote code execution, and have been given a Critical rating by Adobe. All of them were discovered by FortiGuard Labs researcher Honggang Ren and reported to Adobe by following Fortinet’s responsible disclosure process.
On the April 9, 2019, Adobe released security bulletin APSB19-20, which patches seven Adobe Zero-Day Shockwave Player vulnerabilities. A FortiGuard Labs Breaking Threat Research Report
0 kommentar(er)
