• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Autodesk 'LiveUpdate16.DLL' ActiveX Control Arbitrary Program Execution Vulnerability

The Autodesk LiveUpdate Module 'LiveUpdate16.DLL' ActiveX control is prone to a vulnerability that lets attackers execute arbitrary local programs.

Successfully exploiting this issue allows remote attackers to execute arbitrary local programs in the context of the application using the ActiveX control (typically Internet Explorer).

'LiveUpdate61.DLL' 17.2.56 is vulnerable; other versions may also be affected.