2 matches found
CVE-2008-4472
The CVE-2008-4472 issue is in the LiveUpdate ActiveX control (LiveUpdate16.DLL 17.2.56) used by Autodesk products (e.g., Revit Architecture 2009 SP2, Autodesk Design Review 2009). The ApplyPatch method accepts a second argument and can cause arbitrary code execution on a remote Windows host when ...
CVE-2008-4471
The CVE-2008-4471 issue affects the DWF Viewer ActiveX control (AdView.dll 9.0.0.96) used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009. A directory traversal vulnerability in CExpressViewerControl allows remote attackers to overwrite arbitrary files via ".." in the SaveAS argume...