Maya virus warning

Autodesk is reporting a security vulnerability in Maya, which exploits scriptnodes to spread a malicious usersSetup that can mess with people’s files.

https://apps.autodesk.com/MAYA/en/Detail/Index?id=8637238041954239715&os=Win64&appLang=en

They’re published a security fix here:
https://apps.autodesk.com/MAYA/en/Detail/Index?id=8637238041954239715&os=Win64&appLang=en

It’s a very, very good idea to download and run this if you have any exposure to out of house maya files.

Hat tip to @Mark-J who brought this to people’s attention on slack

4 Likes

the operative bit is a function called MayaScan – it’s a mel procedure but once the plugin is loaded you can call it via maya.cmds. So

cmds.loadPlugin('MayaScanner', qt=True)
cmds.loadPlugin('MayaScannerCB', qt=True)  # evidently a file save callback script
cmds.MayaScan()

should be what you need to add to your setup routines. If this throws an exception you’ll need to make the users download the plugins.