Autodesk Backburner栈缓冲区溢出漏洞(CVE-2016-2344)
Autodesk Backburner栈缓冲区溢出漏洞(CVE-2016-2344)
Autodesk Backburner栈缓冲区溢出漏洞(CVE-2016-2344)
发布日期:2016-03-28
更新日期:2016-03-29
受影响系统:
Autodesk Backburner 2016.0.0.2150
描述:
CVE(CAN) ID: CVE-2016-2344
Backburner是网络渲染管理软件。
Backburner 2016 2016.0.0.2150及更早版本中,Backburner Manager的manager.exe存在栈缓冲区溢出漏洞。远程攻击者通过构造的命令,利用此漏洞可执行任意代码或造成拒绝服务。
<*来源:Alex Ondrick
*>
建议:
厂商补丁:
Autodesk
--------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
https://knowledge.autodesk.com/support/3ds-max/troubleshooting/caas/CloudHelp/cloudhelp/2016/ENU/Installation-3DSMax/files/GUID-F6732A30-821C-4547-9FAA-E46BCA13392A-htm.html
https://cwe.mitre.org/data/definitions/121.html
https://knowledge.autodesk.com/support/3ds-max/troubleshooting/caas/sfdcarticles/sfdcarticles/Backburner-Network-Port-Configuration.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4749
http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-008.txt
本文永久更新链接地址:
评论暂时关闭