RSS   Vulnerabilities for 'Dwf viewer'   RSS

2008-10-07
 
CVE-2008-4472

CWE-264
 

 
The UpdateEngine class in the LiveUpdate ActiveX control (LiveUpdate16.DLL 17.2.56), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote attackers to execute arbitrary programs via the second argument to the ApplyPatch method.

 
 
CVE-2008-4471

CWE-22
 

 
Directory traversal vulnerability in the CExpressViewerControl class in the DWF Viewer ActiveX control (AdView.dll 9.0.0.96), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote attackers to overwrite arbitrary files via "..\" sequences in the argument to the SaveAS method.

 

 >>> Vendor: Autodesk 50 Products
3ds max
Architectural desktop
Autocad
Autocad civil 3d
Autocad electrical
Autocad lt
Autocad mechanical
Building systems
Civil design
Inventor
Land desktop
Map 3d
Raster design
Revit
Revit structure
Survey
Utility design
VIZ
Backburner
Design review
Dwf viewer
Revit architecture
Autodesk softimage
Autodesk softimage xsi
Alias wavefront maya
Autodesk maya
Design review 2011
Autocad architecture
Autocad ecscad
Autocad map 3d
Autocad mep
Autocad p&id
Autocad plant 3d
Autocad structural detailing
Autocad utility design
Dwg trueview
Sketchbook for enterprise 2014
Sketchbook express
Sketchbook pro
Sketchbook
VRED
Design review 2013
Autodesk backburner
Fbx software development kit
Advance steel
Civil 3d
Autodesk desktop
Dynamo bim
Fbx review
Navisworks


Copyright 2024, cxsecurity.com

 

Back to Top