Vulnerability Description
Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote attackers to execute arbitrary code via a crafted DWG file.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Autodesk | Autocad | 2011 |
| Autodesk | Autocad Architecture | 2011 |
| Autodesk | Autocad Civil 3D | 2011 |
| Autodesk | Autocad Ecscad | 2011 |
| Autodesk | Autocad Electrical | 2011 |
| Autodesk | Autocad Lt | 2011 |
| Autodesk | Autocad Map 3D | 2011 |
| Autodesk | Autocad Mechanical | 2011 |
| Autodesk | Autocad Mep | 2011 |
| Autodesk | Autocad P\&Id | 2011 |
| Autodesk | Autocad Plant 3D | 2011 |
| Autodesk | Autocad Structural Detailing | 2011 |
| Autodesk | Autocad Utility Design | 2011 |
| Autodesk | Dwg Trueview | 2011 |
References
- http://images.autodesk.com/adsk/files/Autodesk_AutoCAD_Code_Execution_VulnerabilVendor Advisory
- http://usa.autodesk.com/adsk/servlet/ps/dl/item?id=21972896&linkID=9240618&siteIPatchVendor Advisory
- http://images.autodesk.com/adsk/files/Autodesk_AutoCAD_Code_Execution_VulnerabilVendor Advisory
- http://usa.autodesk.com/adsk/servlet/ps/dl/item?id=21972896&linkID=9240618&siteIPatchVendor Advisory
FAQ
What is CVE-2013-3665?
CVE-2013-3665 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote attackers to execute arbitrary code via a crafted DWG file.
How severe is CVE-2013-3665?
CVE-2013-3665 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-3665?
Check the references section above for vendor advisories and patch information. Affected products include: Autodesk Autocad, Autodesk Autocad Architecture, Autodesk Autocad Civil 3D, Autodesk Autocad Ecscad, Autodesk Autocad Electrical.