CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-2344
https://notcve.org/view.php?id=CVE-2016-2344
Stack-based buffer overflow in manager.exe in Backburner Manager in Autodesk Backburner 2016 2016.0.0.2150 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted command. NOTE: this is only a vulnerability in environments in which the administrator has not followed documentation that outlines the security risks of operating Backburner on untrusted networks. Desbordamiento de buffer basado en pila en manager.exe en Backburner Manager en Autodesk Backburner 2016 2016.0.0.2150 y versiones anteriores permite a atacantes remotos ejecutar código arbitrario o provocar una denegación de servicio (caída de demonio) a través de un comando manipulado. NOTA: esta es sólo una vulnerabilidad en entornos en los que el administrador no ha seguido la documentación que describe los riesgos de seguridad de funcionamiento de Backburner en redes no confiables. • http://www.kb.cert.org/vuls/id/732760 http://www.securitytracker.com/id/1035426 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 2%CPEs: 1EXPL: 0CVE-2007-4749
https://notcve.org/view.php?id=CVE-2007-4749
The cmdjob utility in Autodesk Backburner 3.0.2 allows remote attackers to execute arbitrary commands on render servers by queueing jobs that contain these commands. NOTE: this is only a vulnerability in environments in which the administrator has not followed documentation that outlines the security risks of operating Backburner on untrusted networks. La utilidad cmdjob de Autodesk Backburner 3.0.2 permite a atacantes remotos ejecutar comandos de su elección en servidores de interpretación (render) al encolar trabajos que contienen estos comandos. NOTA: Esto es solo una vulnerabilidad en entornos en los cuales el administrador no ha seguido la documentación que subraya los riesgos de seguridad de utilizar Backburner en redes no confiables. • http://secunia.com/advisories/26797 http://securityreason.com/securityalert/3132 http://securitytracker.com/id?1018686 http://www.securityfocus.com/archive/1/479193/100/0/threaded http://www.securityfocus.com/bid/25590 http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-008.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/36582 • CWE-16: Configuration •