CVE-2011-2112

Name of the Vulnerable Software and Affected Versions Adobe Shockwave Player versions prior to 11.6.0.626

Description The issue is related to multiple buffer overflows in the IML32.dll component of Adobe Shockwave Player, allowing attackers to execute arbitrary code. Various chunk parsing vulnerabilities, including misallocation, integer overflow, and multiple field parsing issues, have been identified. These vulnerabilities can be exploited via unspecified vectors.

Recommendations For Adobe Shockwave Player versions prior to 11.6.0.626, update to version 11.6.0.626 or later to resolve the issue. As a temporary workaround, consider disabling the use of IML32.dll until a patch is applied. Restrict access to Adobe Shockwave Player to minimize the risk of exploitation. Avoid using the affected Adobe Shockwave Player versions until the issue is resolved.