2 matches found
CVE-2009-4148
CVE-2009-4148 affects DAZ Studio 2.3.3.161, 2.3.3.163 and 3.0.1.135. It enables remote code execution via malicious scripting files with extensions .ds, .dsa, .dse, or .dsb, demonstrated by code that loads the WScript.Shell ActiveX control (script injection vulnerability). Proof of concept and ad...
CORE-2009-0911: DAZ Studio Arbitrary Command Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ DAZ Studio Arbitrary Command Execution 1. Advisory Information Title: DAZ Studio Arbitrary Command Execution Advisory Id: CORE-2009-0911 Advisory URL:...