OS/Platform/Application:

Adobe Shockwave Player

(on Windows systems using Internet Explorer only)

Category: ALERT
Severity: HIGH
Attention: Adobe Products Users, System Administrators, Desktop Support Personnel.

Summary: Adobe systems has released an updated version of its Shockwave media player application.  The update includes a fix for a security vulnerability associated with a recently-reported flaw in Microsoft Internet Explorer and Visual Studio.  The most likely mechanism of exploitation is the opening of a maliciously-crafted PDF file or browsing of a maliciously-crafted web page.  Successful exploitation could result in complete takeover of a vulnerable computer. 

Recommended Actions: Shockwave users are encouraged to read the advisory and apply the update as soon as possible.  Readers should take note of the associated Microsoft bulletin (details are provided in the body of the advisory) and etermine if the necessary Microsoft updates have been applied as well. 

Readers are encouraged to share this alert with family, friends, and associates.

ITS Actions: N/A

Resources:

Adobe Security Advisory:
http://www.adobe.com/support/security/bulletins/apsb09-11.html

Adobe Products Download Page:
http://www.adobe.com/products/