CVE

Id
67335  
CVE No.
CVE-2013-7388  
Status
Candidate  
Description
Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP). NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1).  
Phase
Assigned (20140701)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
649495 67335 CVE-2013-7388 MISC:http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html  View
649496 67335 CVE-2013-7388 MISC:http://www.binamuse.com/advisories/BINA-20130521B.txt  View
649497 67335 CVE-2013-7388 BID:60248  View
649498 67335 CVE-2013-7388 URL:http://www.securityfocus.com/bid/60248  View
649499 67335 CVE-2013-7388 SECUNIA:53635  View
649500 67335 CVE-2013-7388 URL:http://secunia.com/advisories/53635  View
649501 67335 CVE-2013-7388 XF:sketchup-cve20133664-bo(84723)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
25047 JVNDB-2013-006622 Subversion の daemonize.py モジュールにおける権限を取得される脆弱性 Subversion の daemonize.py モジュールには、権限を取得される脆弱性が存在します。 CVE-2013-7393 67335 2.4 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-006622.html  View