NVD

Id
11848  
Name
CVE-2010-0280  
Description
Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-01-15  
Modified Date
2010-01-18  
Seq
2010-0280  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
65253 11848 CVE-2010-0280 http://sketchup.google.com/support/bin/answer.py?hl=en&answer=141303  View
65254 11848 CVE-2010-0280 http://www.coresecurity.com/content/google-sketchup-vulnerability  View
65255 11848 CVE-2010-0280 20100113 [CORE-2009-1209] Google SketchUp "lib3ds" 3DS Importer Memory Corruption  View
65256 11848 CVE-2010-0280 37708  View
65257 11848 CVE-2010-0280 ADV-2010-0133  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
38000 JVNDB-2010-003785 Jan Eric Kyprianidis lib3ds におけるサービス運用妨害 (DoS) の脆弱性 Google SketchUp で使用される Jan Eric Kyprianidis lib3ds は、mesh.c に関連する不備があるため、サービス運用妨害 (メモリ破壊) 状態となる、または任意のコードを実行される脆弱性が存在します。 CVE-2010-0280 42860 CVE-2010-0280 11848 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-003785.html 2010-01-15 2012-06-26 View