CVE-2014-2967

Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server...

CVE-2014-2967

Autodesk VRED Pro 2014 (before SR1 SP8) is affected by an unauthenticated remote code execution via the built‑in web server’s Python API. An attacker can remotely execute arbitrary code by sending commands through the exposed Python API (using the os library) on the server (port 8888). Impact is ...