Adobe Systems patched 20 security vulnerabilities in its Shockwave Player on Tuesday. Most of the flaws could allow an attacker to run their own code on an affected computer.

The vulnerabilities are in versions of Shockwave Player up to version 11.5.7.609, on both Apple's Mac OS X and Microsoft Windows. The patched version is 11.5.8.612, according to an Adobe advisory.

Eighteen of the problems could lead to code execution, while the remaining two are denial of service issues, one of which could possibly lead to remote code execution.

Shockwave Player is used to display content created by Adobe's Director program, which offers advanced tools for creating interactive content, including Flash. The Director application can be used for creating 3D models, high-quality images and full-screen or long-form digital content and offers greater control over how those elements are displayed.

More: http://www.computerworld.com/s/article/9181759/