CVE-2011-2109

Name of the Vulnerable Software and Affected Versions Adobe Shockwave Player versions prior to 11.6.0.626

Description The issue is related to multiple integer overflows in Dirapi.dll, which allows attackers to execute arbitrary code. Additionally, there are remote code execution vulnerabilities related to rcsL parsing and font structure parsing.

Recommendations For versions prior to 11.6.0.626, update to version 11.6.0.626 or later to resolve the issue. As a temporary workaround, consider restricting access to Dirapi.dll or disabling the parsing of rcsL and font structures until a patch is applied.