1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: SolidWorks Workgroup PDM Arbitrary File Overwrite

Attack: SolidWorks Workgroup PDM Arbitrary File Overwrite

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts of leveraging an arbitrary file-overwrite vulnerability in SolidWorks Workgroup PDM which could lead to overwrite arbitrary files and code execution.

Additional Information

SolidWorks Workgroup PDM is a software to manage design revisions of CAD data.

The application is prone to an arbitrary file-overwrite vulnerability. Specifically, this issue affects the 'pdmwService.exe' file.

Successful exploits may allow an attacker to overwrite arbitrary files in the context of the user running the affected application.

Affected

  • SolidWorks Workgroup PDM 2014 SP2 is vulnerable; other versions may also be affected.

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube