Signature Detail
Short Name |
HTTP:STC:ACTIVEX:ADESK-AX |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Autodesk LiveUpdate16.DLL Unsafe ActiveX Control |
Release Date |
2010/08/27 |
Update Number |
1761 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Autodesk LiveUpdate16.DLL Unsafe ActiveX Control
This signature detects attempts to use unsafe ActiveX controls in Autodesk. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
The Autodesk LiveUpdate Module 'LiveUpdate16.DLL' ActiveX control is prone to a vulnerability that lets attackers execute arbitrary local programs. Successfully exploiting this issue allows remote attackers to execute arbitrary local programs in the context of the application using the ActiveX control (typically Internet Explorer). 'LiveUpdate61.DLL' 17.2.56 is vulnerable; other versions may also be affected.
Affected Products
- Autodesk AutoCAD 2004
- Autodesk AutoCAD 2005
- Autodesk AutoCAD 2006
- Autodesk AutoCAD 2007
- Autodesk AutoCAD 2008
- Autodesk AutoCAD 2009
- Autodesk AutoCAD Architecture 2008
- Autodesk AutoCAD Architecture 2009
- Autodesk AutoCAD Civil 2009
- Autodesk AutoCAD Civil 3D 2008
- Autodesk AutoCAD Civil 3D 2009
- Autodesk AutoCAD Civil 3D Land Desktop Companion 2008
- Autodesk AutoCAD Civil 3D Land Desktop Companion 2009
- Autodesk AutoCAD Electrical 2004
- Autodesk AutoCAD Electrical 2005
- Autodesk AutoCAD Electrical 2006
- Autodesk AutoCAD Electrical 2007
- Autodesk AutoCAD Electrical 2008
- Autodesk AutoCAD Electrical 2009
- Autodesk AutoCAD Land Desktop 2008
- Autodesk AutoCAD Land Desktop 2009
- Autodesk AutoCAD Land Desktop Companion 2008
- Autodesk AutoCAD LT 2004
- Autodesk AutoCAD LT 2005
- Autodesk AutoCAD LT 2006
- Autodesk AutoCAD LT 2007
- Autodesk AutoCAD LT 2008
- Autodesk AutoCAD LT 2009
- Autodesk AutoCAD Map 3D 2008
- Autodesk AutoCAD Map 3D 2009
- Autodesk AutoCAD Mechanical 2004
- Autodesk AutoCAD Mechanical 2004 DX
- Autodesk AutoCAD Mechanical 2005
- Autodesk AutoCAD Mechanical 2006
- Autodesk AutoCAD Mechanical 2007
- Autodesk AutoCAD Mechanical 2008
- Autodesk AutoCAD Mechanical 2009
- Autodesk AutoCAD MEP 2008
- Autodesk AutoCAD MEP 2009
- Autodesk AutoCAD OEM 2008
- Autodesk AutoCAD P&ID 2008
- Autodesk AutoCAD P&ID 2009
- Autodesk AutoCAD Raster Design 2008
- Autodesk AutoCAD Raster Design 2009
- Autodesk AutoCAD Revit Architecture Suite 2008
- Autodesk AutoCAD Revit Architecture Suite 2009
- Autodesk AutoCAD Revit MEP Suite 2008
- Autodesk AutoCAD Revit MEP Suite 2009
- Autodesk AutoCAD Revit Structure Suite 2008
- Autodesk AutoCAD Revit Structure Suite 2009
- Autodesk AutoCAD Structural Detailing 2009
- Autodesk AutoCAD Survey 2009
- Autodesk Design Review 2009
- Autodesk Revit Architecture 2009
References