Recent Vulnerabilities Research Posts Trends Blog About Contact

Core Security Technologies Advisory - DAZ Studio is a 3D figure illustration/animation application released by DAZ 3D Inc. DAZ Studio can be accessed via a scripting language which allows for quite a bit of diversity in tool creation. DAZ Studio does not ask for any confirmation from the user prior to executing a scripting file with any of the following extensions: .ds, .dsa, .dse, .dsb. An attacker could abuse the scripting interface by enticing an unsuspecting user to open a malicious scripting file, thus obtaining remote code execution. Proof of concept code included.

Core Security Technologies Advisory - DAZ Studio is a 3D figure illustration/animation application released by DAZ 3D Inc DAZ Studio can be accessed via a scripting language which allows for quite a bit of diversity in tool creation DAZ Studio does not ask for any confirmation from the user prior to executing a scripting file with any of the foll ...

https://packetstormsecurity.com/files/83418/Core-Security-Technologies-Advisory-2009.0911.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-41483

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect