Description
Autodesk Softimage 7.x and Softimage XSI 6.x allow remote attackers to execute arbitrary JavaScript code via a scene package containing a Scene Table of Contents (aka .scntoc) file with a Script_Content element, as demonstrated by code that loads the WScript.Shell ActiveX control.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Diego Juarez · remotewindows
https://www.exploit-db.com/exploits/33273
exploitdb
WRITEUP
VERIFIED
by Core Security · textlocalwindows
https://www.exploit-db.com/exploits/10211
References (4)
Core 4
Core References
Exploit x_refsource_misc
http://www.coresecurity.com/content/softimage-arbitrary-command-execution
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1023229
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/508011/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36637
Scores
EPSS
0.0448
EPSS Percentile
89.1%
Details
CWE
CWE-94
Status
published
Products (2)
autodesk/autodesk_softimage
7.0
autodesk/autodesk_softimage_xsi
6.0
Published
Nov 24, 2009
Tracked Since
Feb 18, 2026