HTTP: Autodesk Design Review GIF GlobalColorTable DataSubBlock Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Autodesk Design Review. A successful attack can lead to arbitrary code execution.
Extended Description
Multiple buffer overflows in Autodesk Design Review (ADR) before 2013 Hotfix 2 allow remote attackers to execute arbitrary code via crafted RLE data in a (1) BMP or (2) FLI file, (3) encoded scan lines in a PCX file, or (4) DataSubBlock or (5) GlobalColorTable in a GIF file.
Affected Products
Autodesk design_review
Short Name
HTTP:STC:AUTODESK-GIF-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Autodesk Buffer CVE-2015-8572 DataSubBlock Design GIF GlobalColorTable Overflow Review
Release Date
02/08/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Autodesk
CVSS Score
6.8