2 matches found
Autodesk AutoCAD不可信搜索路径权限提升漏洞
CVE ID:CVE-2014-0819 Autodesk AutoCAD是一款强大的大型计算机辅助绘图软件。 Autodesk AutoCAD不正确处理搜索路径,允许本地攻击者利用漏洞在当前工作目录存放木马DLL来提升权限。 0 Autodesk AutoCAD 2013 厂商补丁: Autodesk ----- 用户可联系厂商获得相应的升级或补丁程序: http://www.autodesk.com/products/autodesk-autocad/overview...
CVE-2014-0819
CVE-2014-0819 affects Autodesk AutoCAD prior to 2014. The vulnerability is an insecure DLL search path: a Trojan DLL placed in the current working directory can be loaded, enabling local privilege escalation/arbitrary code execution. Affected products: AutoCAD 2013 and earlier. Root cause: untrus...