Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-3664
HistoryJul 01, 2014 - 5:55 p.m.

CVE-2013-3664

2014-07-0117:55:03
CWE-119
[email protected]
web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.698 Medium

EPSS

Percentile

98.0%

JSON

Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662. NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue.

Affected configurations

NVD
Node
googlesketchupMatch6.0maintenance_6
OR
googlesketchupMatch7.0maintenance_1
OR
googlesketchupMatch7.1
OR
googlesketchupMatch7.1maintenance_1
OR
googlesketchupMatch7.1maintenance_2
OR
googlesketchupMatch8.0
OR
googlesketchupMatch8.0maintenance_1
OR
googlesketchupMatch8.0maintenance_2
OR
googlesketchupMatch8.0maintenance_3
OR
googlesketchupMatch8.0maintenance_4
OR
trimblesketchupRange8.0maintenance_5

Related

cve 3
prion 3
cvelist 3
nvd 2
kaspersky 1
nessus 2
binamuse 1
securityvulns 3
checkpoint_advisories 2
cve
cve
CVE-2013-3664
2014-07-01 17:55:03
CVE-2013-7388
2014-07-01 17:55:03
CVE-2013-3662
2014-07-01 17:55:03
prion
prion
Out-of-bounds
2014-07-01 17:55:00
Heap overflow
2014-07-01 17:55:00
Stack overflow
2014-07-01 17:55:00
cvelist
cvelist
CVE-2013-3664
2014-07-01 17:00:00
CVE-2013-7388
2014-07-01 17:00:00
CVE-2013-3662
2014-07-01 17:00:00
nvd
nvd
CVE-2013-7388
2014-07-01 17:55:03
CVE-2013-3662
2014-07-01 17:55:03
kaspersky
kaspersky
KLA10181 ACE vulnerability in Sketchup
2014-07-01 00:00:00
nessus
nessus
Google SketchUp < 13.0.3689 SKP Multiple Vulnerabilities
2013-06-19 00:00:00
Google SketchUp < 8.0.11752 MAC Pict Buffer Overflow
2013-06-19 00:00:00
binamuse
binamuse
Multiple vulnerabilities on sketchup
2013-05-31 14:36:00
securityvulns
securityvulns
Sketchup multiple security vulnerabilities
2013-06-03 00:00:00
CVE-2013-3662 - Sketchup MAC Pict Material Palette Stack Corruption
2013-06-03 00:00:00
CVE-2013-3664 - Sketchup Multiple Vulnerabilities
2013-06-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Trimble Navigation SketchUp PICT File Buffer Overflow - Improved Performance (CVE-2013-3664)
2013-07-23 00:00:00
Trimble Navigation SketchUp BMP File Buffer Overflow (CVE-2013-3664)
2013-09-22 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.698 Medium

EPSS

Percentile

98.0%

JSON
Related for NVD:CVE-2013-3664
cve3prion3cvelist3nvd2kaspersky1nessus2binamuse1securityvulns3checkpoint_advisories2