A maliciously crafted DWF file, when parsed through...
High severity
Unreviewed
Published
Dec 17, 2024
to the GitHub Advisory Database
•
Updated Dec 17, 2024
Description
Published by the National Vulnerability Database
Dec 17, 2024
Published to the GitHub Advisory Database
Dec 17, 2024
Last updated
Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
References