Adobe has released patches for at least 21 documented security vulnerabilities in the Shockwave and ColdFusion product lines. The vulnerabilities could allow an attacker to run malicious code on the affected system. Adobe recommends users of Adobe Shockwave Player 11.5.6.606 and earlier versions update to 11.7.609. The second bulletin (APSB10-11) is rated important and fixes three flaws that could lead to cross-site scripting and information disclosure issues. None of the fixes in this update involve zero-day issues or exploits in the wild.
Source: https://threatpost.com/adobe-patches-critical-shockwave-coldfusion-holes-051110/73952/