This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

10/27/15 Adobe Bulletin Priority 1 Update for Shockwave Plugin

  • 1 phendula
  • 1 inayo le ngxaki
  • 8 views
  • Impendulo yokugqibela ngu James

more options

October 27, 2015 Adobe Bulletin released a security update for Adobe Shockwave Player (v.12.2.1.171, updating v12.2.0.162). The update addresses a critical vulnerability that could potentially allow an attacker to take control of the affected system. Th3 update resolves a memory corruption vulnerability that could lead to code execution (CVE-2015-7649). I successfully downloaded and as far as I can tell, the update was installed.

Having said that, unlike other previous all-too-frequent Adobe updates, this Shockwave plugin does not reflect Shockwave the updated v.12.2.1.171, but remains as v.12.2.0.162.

Triple-checking plugins for recent updates, nothing was noted as currently updated; however, further scanning down the page under "Unknown Plugins" is indeed seen (Unknown/Research tab) "Shockwave for Director (v. 12.2.1.171) Adobe Shockwave for Director Netscape plug-in, version 12.2.1.171" Opening the tab one finds a long list of older and newer links and commentary. Very confusing. Is one to assume that v.2.2.1.162 is now okay and, how about v.12.2.1.171? Is it truly installed? How does one enable it? the download did not support the normal Adobe help to check to see what transpired, if it is installed, etc.

See, attached Screenshot of "Unknown Plugins" shows v.12.2.1.171, etc.

October 27, 2015 Adobe Bulletin released a security update for Adobe Shockwave Player (v.12.2.1.171, updating v12.2.0.162). The update addresses a critical vulnerability that could potentially allow an attacker to take control of the affected system. Th3 update resolves a memory corruption vulnerability that could lead to code execution (CVE-2015-7649). I successfully downloaded and as far as I can tell, the update was installed. Having said that, unlike other previous all-too-frequent Adobe updates, this Shockwave plugin does not reflect Shockwave the updated v.12.2.1.171, but remains as v.12.2.0.162. Triple-checking plugins for recent updates, nothing was noted as currently updated; however, further scanning down the page under "Unknown Plugins" is indeed seen (Unknown/Research tab) "Shockwave for Director (v. 12.2.1.171) Adobe Shockwave for Director Netscape plug-in, version 12.2.1.171" Opening the tab one finds a long list of older and newer links and commentary. Very confusing. Is one to assume that v.2.2.1.162 is now okay and, how about v.12.2.1.171? Is it truly installed? How does one enable it? the download did not support the normal Adobe help to check to see what transpired, if it is installed, etc. See, attached Screenshot of "Unknown Plugins" shows v.12.2.1.171, etc.
Iqhotyoshelwe imifanekiso ekwisikrini

All Replies (1)

more options

The Check Your Plugins page gets manually updated.

A tracking bug for reading as Bugzilla is not a discussion forum.

Bug 1218877 - Plugincheck Database - Review and correct Adobe Shockwave Player version 12.2.0.162 vs version 12.2.1.171