dik
Structural
- Apr 13, 2001
- 25,981
From Upfront eZine...
Two security researchers in Argentina earlier this year found an exploit in DWG version AC1021 files used by AutoCAD 2007 and later, as well as TrueView and Autodesk software based on AutoCAD. The exploit is severe enough ("Medium") to be listed in the US government's National Vulnerability Database (see
Security research firm Binamuse reported the problem to Autodesk on March 27, following which Autodesk quietly released a hotfix July 10 at . The patch is for AutoCAD 2011-2014, but not for the truly affected releases of AutoCAD 2007-2010, oddly enough. (The more recent releases are affected only in that they can read DWG 2007-10 files.)
Autocad prior to 2011 release is vulnerable.
Dik
Two security researchers in Argentina earlier this year found an exploit in DWG version AC1021 files used by AutoCAD 2007 and later, as well as TrueView and Autodesk software based on AutoCAD. The exploit is severe enough ("Medium") to be listed in the US government's National Vulnerability Database (see
Security research firm Binamuse reported the problem to Autodesk on March 27, following which Autodesk quietly released a hotfix July 10 at . The patch is for AutoCAD 2011-2014, but not for the truly affected releases of AutoCAD 2007-2010, oddly enough. (The more recent releases are affected only in that they can read DWG 2007-10 files.)
Autocad prior to 2011 release is vulnerable.
Dik