CVE-2010-5226

Name of the Vulnerable Software and Affected Versions Autodesk Design Review version 11.0.0.86

Description The issue allows local users to gain privileges via a Trojan horse dwmapi.dll, whiptk wt.7.12.601.dll, or xaml wt.7.6.0.dll file in the current working directory. This can be demonstrated by a directory that contains a .dwf file.

Recommendations For Autodesk Design Review version 11.0.0.86, consider restricting access to the current working directory to minimize the risk of exploitation. As a temporary workaround, avoid using directories that contain .dwf files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.