CVE-2016-9303

EUVD-2016-10113
Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code or cause an infinite loop condition when reading or converting malformed FBX format files.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
autodeskfbx_software_development_kit
𝑥
≤ 2017.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.autodesk.com/trust/security-advisories/adsk-sa-2016-01
http://www.securityfocus.com/bid/95805
http://www.autodesk.com/trust/security-advisories/adsk-sa-2016-01
http://www.securityfocus.com/bid/95805