89 matches found
Autodesk Navisworks Out-of-Bounds Read Vulnerability (CNVD-2021-99309)
Autodesk Navisworks, a 3D model review software for architecture, engineering and construction, is vulnerable to an out-of-bounds read vulnerability in Autodesk Navisworks versions 2019, 2020, 2021, 2022. An attacker can exploit the vulnerability to execute arbitrary code via specially crafted PD...
Autodesk Navisworks Memory Corruption Vulnerability
Autodesk Navisworks is a 3D model review software for architecture, engineering and construction. A memory corruption vulnerability exists in Autodesk Navisworks versions 2019, 2020, 2021, 2022. An attacker can exploit the vulnerability to execute code via specially crafted DLL files...
CVE-2021-30863
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID...
Design/Logic Flaw
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID...
CVE-2021-30863
CVE-2021-30863 affects devices with Face ID. The issue describes a spoofing risk where a 3D model resembling the enrolled user may authenticate via Face ID. Apple fixed the vulnerability in iOS 15 and iPadOS 15 by improving Face ID anti-spoofing models. Public-facing details in the connected sour...
Prusa Research PrusaSlicer _3MF_Importer::_handle_end_model() use-after-free vulnerability
Summary A use-after-free vulnerability exists in the 3MFImporter::handleendmodel functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted 3MF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested...
CVE-2019-8760
This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
Design/Logic Flaw
This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
GLSA-201803-13 : PLIB: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201803-13 PLIB: User-assisted execution of arbitrary code A stack-based buffer overflow within the error function of ssg/ssgParser.cxx was discovered in PLIB. Impact : A remote attacker, by enticing a user to open a specially...
SAP 3D Visual Enterprise Viewer 3DM File Buffer Overflow
A buffer overflow vulnerability exists in SAP 3D Visual Enterprise Viewer. The vulnerability is caused by improper validation of the size value read from a Rhino 3D Model 3DM file. By enticing a user to open a crafted 3DM file with the affected application, an attacker could possibly exploit this...
PLIB 1.8.5 ssg/ssgParser.cxx Buffer Overflow
No description provided by source. / Exploit Title: Plib + flightgear 3dconvert exploit Date: 08/10/2012 Author: Andres Gomez Software Links: Plib: http://plib.sourceforge.net/ flightgear: http://www.flightgear.org/ 3dconvert: ftp://ftp.ihg.uni-duisburg.de/FlightGear/Win32/old/3dconvert-win32.zip...
CVE-2012-4552
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...
CVE-2012-4552
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...
Stack overflow
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...
CVE-2012-4552
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...
CVE-2012-4552
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...
CVE-2012-4552
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...
CVE-2012-4552
PLIB 1.8.5 is affected by a stack-based buffer overflow in the error function (ssg/ssgParser.cxx) that can be triggered by a crafted 3D model file (e.g., .ase), allowing remote code execution. Public advisories confirm the issue and show remediation guidance; upgrades to newer PLIB versions fix t...
PLIB 1.8.5 - 'ssg/ssgParser.cxx' Local Buffer Overflow
/ Exploit Title: Plib + flightgear 3dconvert exploit Date: 08/10/2012 Author: Andres Gomez Software Links: Plib: http://plib.sourceforge.net/ flightgear: http://www.flightgear.org/ 3dconvert: ftp://ftp.ihg.uni-duisburg.de/FlightGear/Win32/old/3dconvert-win32.zip Version: Plib 1.8.5 Tested on:...
plib -- stack-based buffer overflow
CVE reports: Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...