2 matches found
Autodesk AutoCAD任意VBScript执行漏洞
CVE ID:CVE-2014-0818 Autodesk AutoCAD是一款强大的大型计算机辅助绘图软件。 Autodesk AutoCAD打开文件时会加载特定的FAS文件,AutoCAD处理FAS文件搜索路径存在漏洞,允许攻击者利用漏洞加载任意VBscript代码。 0 Autodesk AutoCAD 2013 厂商补丁: Autodesk ----- 用户可联系厂商获得相应的升级或补丁程序: http://www.autodesk.com/products/autodesk-autocad/overview...
CVE-2014-0818
CVE-2014-0818 : In Autodesk AutoCAD (pre-2014), an insecure FAS file search path allows a Trojan horse FAS to be loaded, enabling a local user to gain privileges and execute arbitrary VBScript code. Affected products are AutoCAD 2013 and earlier. Root cause: improper handling of the FAS file sear...