Luxion KeyShot 3DS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2024-11576

7.8HIGH

Key Information:

Vendor: Luxion
Status: Keyshot
Vendor: CVE Published:; 22 November 2024

Summary

A vulnerability exists in Luxion KeyShot relating to the parsing of 3DS files, resulting in a heap-based buffer overflow. This flaw arises from inadequate validation of user-supplied data lengths before it is copied to a buffer in memory. An attacker can exploit this vulnerability to execute arbitrary code in the context of the affected process. Successful exploitation requires the user to interact with a malicious web page or open a specially crafted 3DS file, highlighting the need for heightened vigilance in file handling procedures.

Affected Version(s)

KeyShot 2024 13.0.0 Build 92 4.10.171

References

https://www.zerodayinitiative.com/advisories/ZDI-24-1607/

x_research-advisory

https://download.keyshot.com/cert/ksa-655925/ksa-655925.p...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 22, 2024
Vulnerability Reserved
Nov 20, 2024