The host is installed with Adobe Shockwave Player before 11.5.9.615 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a .dir file containing duplicated LCSM entries in mmap record. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service.