Lucene search

[email protected]CVE-2013-6038

HistoryDec 17, 2013 - 3:21 p.m.

CVE-2013-6038

2013-12-1715:21:23

CWE-119

[email protected]

web.nvd.nist.gov

cve-2013-6038

buffer overflow

remote code execution

trimble sketchup viewer

security vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.2 High

AI Score

Confidence

High

0.037 Low

EPSS

Percentile

91.8%

JSON

Stack-based buffer overflow in Trimble SketchUp Viewer 13.0.4124 allows remote attackers to execute arbitrary code via a crafted .SKP file.

Affected configurations

NVD

Node

trimblesketchup_viewerMatch13.0.4124

CPENameOperatorVersion
trimble:sketchup_viewertrimble sketchup viewereq13.0.4124

CPE	Name	Operator	Version
trimble:sketchup_viewer	trimble sketchup viewer	eq	13.0.4124

References

osvdb.org/100988

www.kb.cert.org/vuls/id/586958

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.2 High

AI Score

Confidence

High

0.037 Low

EPSS

Percentile

91.8%

JSON

Related for CVE-2013-6038

nvd1 cert1 cvelist1 prion1