Autodesk Maya脚本节点文件远程代码执行漏洞

BUGTRAQ ID: 36636 CVE ID: CVE-2009-3578 Maya是一款高端的3D计算机图形和3D建模软件包。 Maya提供了被称为“脚本节点”的方式用于使用MEL（Maya的专有编程语言）和Python对动画行为进行编程。脚本节点保存为.mb和.ma文件格式。通过使用嵌入有脚本节点的特制文件，用户打开恶意的场景文件后就会无需任何干涉便可执行任意命令。 Autodesk Maya 8.5 Autodesk Maya 8.0 Autodesk Maya 2010 Autodesk Maya 2009 Autodesk Maya 2008 临时解决方法：...

Autodesk Maya Script - Nodes Arbitrary Command Execution

Autodesk Maya Script - Nodes Arbitrary Command Execution -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk Maya Script Nodes Arbitrary Command Execution 1. Advisory Information Title: Autodesk Maya Script...

Microsoft Silverlight Detection

A version of Microsoft's Silverlight is installed on this host. Microsoft Silverlight is a web application framework that provides functionalities similar to those in Adobe Flash, integrating multimedia, graphics, animations and interactivity into a single runtime environment. C Tenable Network...

Code injection

Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file...

CVE-2008-7148

Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file...

CVE-2008-7148

Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file...

DEBIAN-CVE-2008-7148

Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file...

CVE-2008-7148

Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file...

CVE-2008-7148

CVE-2008-7148 affects Synfig Animation Studio prior to 0.61.08. A crafted .sif file could allow an attacker to execute arbitrary code. The vulnerability is described as unspecified in the product, with no concrete root-cause, exploit path, affected versions beyond the stated prerelease condition,...

CVE-2008-7148

Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file...

DSA-1866-1 kdegraphics - several vulnerabilities

Bulletin has no description...

Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter)

Overview RevoCounter CGI Animation Counter from futomi's CGI Cafe contains a cross-site scripting vulnerability. RevoCounter CGI Animation Counter from futomi's CGI Cafe is a software that displays an animated counter on a webpage. RevoCounter CGI Animation Counter contains a cross-site scripting...

JVN#29852698 Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter)

RevoCounter CGI Animation Counter from futomi's CGI Cafe is a software that displays an animated counter on a webpage. RevoCounter CGI Animation Counter contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Softwar...

kdegraphics: KSVG Pointer use-after-free error in the SVG animation element (DoS, ACE)

Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service heap corruption and application crash via an SVG animation element, related to SVG set objects, SVG...

CVE-2009-1709

Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service heap corruption and application crash via an SVG animation element, related to SVG set objects, SVG...

CVE-2009-1709

CVE-2009-1709 is a use-after-free in KDE kdegraphics3/ KSVG animation element (as cited in openSUSE/SUSE advisories and Scientific Linux) that could allow a remote attacker to cause a denial of service (Konqueror crash) or potentially execute arbitrary code when processing crafted SVG images. Rel...

CVE-2009-1709

Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service heap corruption and application crash via an SVG animation element, related to SVG set objects, SVG...

CVE-2009-1709

Removed by vendor...

Fedora Update for blender FEDORA-2008-3862

Check for the Version of blender OpenVAS Vulnerability Test Fedora Update for blender FEDORA-2008-3862 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for blender FEDORA-2008-10448

Check for the Version of blender OpenVAS Vulnerability Test Fedora Update for blender FEDORA-2008-10448 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...