10/27/15 Adobe Bulletin Priority 1 Update for Shockwave Plugin
October 27, 2015 Adobe Bulletin released a security update for Adobe Shockwave Player (v.12.2.1.171, updating v12.2.0.162). The update addresses a critical vulnerability that could potentially allow an attacker to take control of the affected system. Th3 update resolves a memory corruption vulnerability that could lead to code execution (CVE-2015-7649). I successfully downloaded and as far as I can tell, the update was installed.
Having said that, unlike other previous all-too-frequent Adobe updates, this Shockwave plugin does not reflect Shockwave the updated v.12.2.1.171, but remains as v.12.2.0.162.
Triple-checking plugins for recent updates, nothing was noted as currently updated; however, further scanning down the page under "Unknown Plugins" is indeed seen (Unknown/Research tab) "Shockwave for Director (v. 12.2.1.171) Adobe Shockwave for Director Netscape plug-in, version 12.2.1.171" Opening the tab one finds a long list of older and newer links and commentary. Very confusing. Is one to assume that v.2.2.1.162 is now okay and, how about v.12.2.1.171? Is it truly installed? How does one enable it? the download did not support the normal Adobe help to check to see what transpired, if it is installed, etc.
See, attached Screenshot of "Unknown Plugins" shows v.12.2.1.171, etc.
Alle antwoorden (1)
The Check Your Plugins page gets manually updated.
A tracking bug for reading as Bugzilla is not a discussion forum.
Bug 1218877 - Plugincheck Database - Review and correct Adobe Shockwave Player version 12.2.0.162 vs version 12.2.1.171