CVE-2015-8571

Name of the Vulnerable Software and Affected Versions Autodesk Design Review versions prior to 2013 Hotfix 2

Description The issue is caused by an integer overflow in Autodesk Design Review. Exploitation of this issue may allow a remote attacker to execute arbitrary code by using a specially crafted biClrUsed value in a BMP file, leading to a buffer overflow.

Recommendations For versions prior to 2013 Hotfix 2, apply the 2013 Hotfix 2 update to resolve the issue. As a temporary workaround, consider restricting the use of BMP files with crafted biClrUsed values until the update is applied.