all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

ZDI-23-406: Adobe Substance 3D Designer USDA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Add to bookmarks
April 12, 2023, 5 a.m. |

ZDI: Published Advisories www.zerodayinitiative.com

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Substance 3D Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

adobe arbitrary code attackers buffer buffer overflow code code execution designer exploit file malicious overflow page parsing remote code remote code execution stack target usda vulnerability zdi

Visit resource

More from www.zerodayinitiative.com / ZDI: Published Advisories

ZDI-24-469: Avira Prime Link Following Local Privilege Escalation Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
attacker attackers avira code +20
ZDI-24-468: Sante PACS Server PG Patient Query SQL Injection Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers authentication code +16
ZDI-24-467: GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attack attackers attack vectors +21
ZDI-24-466: Siemens Simcenter Femap IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +14
ZDI-24-465: Siemens Simcenter Femap IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +14
ZDI-24-464: Siemens Simcenter Femap IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +14
ZDI-24-463: Siemens Simcenter Femap IGS File Parsing Type Confusion Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +14
ZDI-24-462: Siemens Simcenter Femap IGS File Parsing Type Confusion Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +14
ZDI-24-461: Siemens Simcenter Femap IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability 1 day, 9 hours ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Security Engineer II - Java Fullstack, AWS

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Consultant Cybersécurité Industrielle (F-H-X)

@ Bureau Veritas Group | COURBEVOIE, Ile-de-France, FR
View on infosec-jobs.com

Security Engineer II

@ Syniverse | Costa Rica
View on infosec-jobs.com