Buffer Overflow Vulnerability in Autodesk FBX-SDK
CVE-2016-9304

8.8HIGH

Key Information:

Vendor: Autodesk
Status: Fbx Software Development Kit
Vendor: CVE Published:; 25 January 2017

What is CVE-2016-9304?

The Autodesk FBX-SDK prior to version 2017.1 is susceptible to multiple buffer overflow vulnerabilities. These flaws can be exploited by attackers to execute arbitrary code during the processing of specially crafted DFX format files. This poses a risk to users as it may allow malicious actors to gain unauthorized access to systems and compromise data integrity.

References

http://www.autodesk.com/trust/security-advisories/adsk-sa...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/95799

vdb-entryx_refsource_BID

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 25, 2017
Vulnerability Reserved
Nov 14, 2016