A security researcher has released an exploit for an unpatched security vulnerability in Adobe s Shockwave Player, warning that the flaw could be targeted to launch drive-by malware download attacks. Adobe rates the issue as critical and says the vulnerability affects Shockwave player 11.5.8.612 and earlier versions for Windows and Mac OS X. The vulnerability (CVE-2010-3653) could cause a crash and potentially allow an attacker to take control of the affected system.
Source: https://threatpost.com/attack-code-published-adobe-shockwave-zero-day-102110/74599/

