Autodesk Fbx Software Development Kit 2017.0 Execute Code Overflow Vulnerability
3 Jul. 2017
Autodesk Fbx Software Development Kit is prone to a local code-execution vulnerability.This allows a local attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.
* Autodesk Fbx Software Development Kit 2017.0
A vulnerability was reported in RSA Security Analytics. A remote user can conduct cross-site scripting attacks.
The software does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the site running the RSA Security Analytics software and will run in the security context of that site. As a result, the code will be able to access the target user's cookies (including authentication cookies), if any, associated with the site, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.