AutoVue SolidModel Professional Archive Multiple Remote Buffer Overflow Vulnerabilities

AutoVue SolidModel Professional Archive Multiple Remote Buffer Overflow Vulnerabilities

Multiple remotely exploitable client-side buffer-overflow vulnerabilities reportedly affect AutoVue SolidModel Professional. The application fails to properly validate the length of user-supplied strings before copying them into static process buffers.

An attacker may exploit these issues to execute arbitrary code with the privileges of the user that activated the vulnerable application. This may facilitate unauthorized access.

AutoVue SolidModel Professional Desktop Edition DEMO version 19.1 Build 5993 is reportedly vulnerable. Other versions may be affected as well.