CVSS: 9.3EPSS: 5%CPEs: 4EXPL: 0CVE-2013-5365
https://notcve.org/view.php?id=CVE-2013-5365
Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro, and Express before 6.25, and Copic Edition before 2.0.2 allows remote attackers to execute arbitrary code via RLE-compressed channel data in a PSD file. Un desbordamiento de búfer en la región heap de la memoria en Autodesk SketchBook for Enterprise 2014, Pro, and Express anterior a versión 6.25, y Copic Edition anterior a versión 2.0.2, permite a atacantes remotos ejecutar código arbitrario mediante RLE-compressed channel data en PSD File. • http://secunia.com/advisories/55000 http://secunia.com/secunia_research/2014-5 http://www.sketchbook.com/news/important-security-update-for-sketchbook.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •