Intrusion Prevention

Blender.Embedded.Script.Command.Execution

Description

This indicates an attack attempt against a Command Execution vulnerability in Blender.
The vulnerability is caused by an error when the vulnerable software handles a malicious .blend file. It allows a remote attacker to execute arbitrary command via sending a crafted .blend file.

Affected Products

Blender Blender 2.49b and prior

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2009-3850