Vulnerability CVE-2008-4472

Vulnerability CVE-2008-4472

Published: 2008-10-07 Modified: 2012-02-12

Description:

	Topic	Author	Date
High	Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit	ipsdix_at_gmail....	02.10.2008

Type:

(Permissions, Privileges, and Access Controls)

CVSS Base Score	Impact Subscore	Exploitability Subscore
9.3/10	10/10	8.6/10

Affected software
Autodesk -> Design review
Autodesk -> Dwf viewer
Autodesk -> Revit architecture

http://images.autodesk.com/adsk/files/live_update_hotfix0.html

http://retrogod.altervista.org/9sg_autodesk_revit_arch_2009_exploit.html

http://securityreason.com/securityalert/4361

http://usa.autodesk.com/adsk/servlet/ps/dl/item?siteID=123112&id=12452198&linkID=11705366

http://www.securityfocus.com/archive/1/496847/100/0/threaded

http://www.securityfocus.com/bid/31490

http://www.vupen.com/english/advisories/2008/2704

https://exchange.xforce.ibmcloud.com/vulnerabilities/45521

https://www.exploit-db.com/exploits/6630