With this latest round of patches, Adobe has addressed vulnerabilities in the company’s Shockwave Player for the Windows and Mac operating systems. The Adobe security bulletin, which lists 18 total patches, calls the updates “critical”, as all but one of the identified vulnerabilites can lead to malicious remote code execution.
Adobe recommends that Shockwave users immediately update to version 11.5.7.609 of the player to mitigate the security vulnerabilities.
The second security update is for Adobe ColdFusion – totaling three patches – and affects Windows, Mac, and UNIX operating systems. Adobe considers this an “important” update according to a separate security bulletin, but the company still suggests an immediate update.
The ColdFusion patches released by Adobe address two XXS vulnerabilities that could possibly affect the application development platform.