Adobe has released a critical security update for Adobe Shockwave Player 12.0.7.148 and earlier versions on the Windows and Macintosh operating systems. This update addresses vulnerabilities that could allow an attacker, who successfully exploits these vulnerabilities, to run malicious code on the affected system.
Although I have yet to need Shockwave Player on this computer, there are still many people who use it. If you have Shockwave Player installed, please update to the latest version.
Release date: February 11, 2014
Vulnerability identifier: APSB14-06
CVE number: CVE-2014-0500, CVE-2014-0501
Platform: Windows and Macintosh
The newest version 12.0.9.149 is available here: http://get.adobe.com/shockwave/. As usual, watch for any pre-checked add-ons not needed for the update.