CVE-2014-0818: Code Injection
First published: Sat Feb 22 2014(Updated: )
Untrusted search path vulnerability in Autodesk AutoCAD before 2014 allows local users to gain privileges and execute arbitrary VBScript code via a Trojan horse FAS file in the FAS file search path.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Autodesk AutoCAD 2024 | <=2013 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-0818?
CVE-2014-0818 is considered a high severity vulnerability due to its potential to allow local users to execute arbitrary code.
How do I fix CVE-2014-0818?
To fix CVE-2014-0818, users should update Autodesk AutoCAD to a version newer than 2013.
Who is affected by CVE-2014-0818?
CVE-2014-0818 affects local users of Autodesk AutoCAD versions prior to 2014.
What type of vulnerability is CVE-2014-0818?
CVE-2014-0818 is an untrusted search path vulnerability.
What can attackers do with CVE-2014-0818?
Attackers can exploit CVE-2014-0818 to gain elevated privileges and execute arbitrary VBScript code.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/autodesk
- canonical/autodesk autocad 2024
- version/autodesk autocad 2024/2013