CVE-2013-3664

Trimble SketchUp formerly Google SketchUp before 2013 13.0.3689 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662...

CVE-2013-3662

Timbre SketchUp formerly Google SketchUp before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow...

Out-of-bounds

Trimble SketchUp formerly Google SketchUp before 2013 13.0.3689 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662...

Stack overflow

Timbre SketchUp formerly Google SketchUp before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow...

CVE-2013-3662

Timbre SketchUp formerly Google SketchUp before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow...

CVE-2013-3662

CVE-2013-3662 affects Timbre SketchUp/Google SketchUp prior to 8 Maintenance 2. A crafted color palette table in a MAC Pict texture can trigger a stack-based buffer overflow, allowing remote arbitrary code execution. Impact is consistent with a high-severity, network-accessible vulnerability (as ...

CVE-2013-3664

CVE-2013-3664 affects Trimble SketchUp (formerly Google SketchUp) before version 13.0.3689. It permits remote code execution via a crafted color palette table in a MAC Pict texture, causing an out-of-bounds stack write. This CVE exists due to an incomplete fix for CVE-2013-3662 and was split from...

CVE-2013-3664

Trimble SketchUp formerly Google SketchUp before 2013 13.0.3689 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662...

Google SketchUp < 8.0.11752 MAC Pict Buffer Overflow

The version of Google SketchUp installed on the remote Windows host is earlier than 8.0.11752. As such, it reportedly is affected by a buffer overflow vulnerability. An error exists related to the handling of embedded MAC Pict textures that allows a stack-based buffer overflow, leading to...

CVE-2013-3662 - Sketchup MAC Pict Material Palette Stack Corruption

If you are still using an old version of SketchUp8M2 you should upgrade it. Title: Sketchup MAC Pict Material Palette Stack Corruption Product: Google SketchUp Advisory ID: BINA-20111201 CVE ID: CVE-2013-3662 Class: Boundary Error Condition Buffer Overflow Vulnerability class: Client side/ file...

Multiple vulnerabilities on sketchup

SketchUp is a 3D modeling program marketed by Trimble Navigation Limitedpreviously Google and designed for architectural, civil, and mechanical engineers as well as filmmakers, game developers, and related professions. SketchUp fails to validate the input when parsing different types of embedded...