CVE-2013-3664
Sketchup BMP Material RLE4 Heap Overflow
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
5Exploited in Wild
-Decision
Descriptions
Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662. NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue.
Trimble SketchUp (anteriormente Google SketchUp) anterior a 2013 (13.0.3689) permite a atacantes remotos inyectar código arbitrario a través de una tabla de paleta de color en una textura MAC Pict, lo que provoca una escritura en pila fuera de rango. NOTA: está vulnerabilidad existe debido a una solución incompleta para CVE-2013-3662. NOTA: este problema fue dividido (SPLIT) debido a diferentes productos y bases de códigos afectados (ADT1); CVE-2013-7388 ha sido asignado al problema paintlib.
SketchUp is a 3D modeling program marketed by Trimble Navigation Limited and designed for architectural, civil, and mechanical engineers as well as filmmakers, game developers, and related professions. SketchUp fails to validate the input when parsing an embedded BMP RLE4 compressed texture. Arbitrary code execution is proved possible after a malicious texture or thumbnail or background image triggers a heap overflow. The issue can also be triggered when Windows Explorer reads the embedded thumbnail in a .skp file.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2013-05-24 CVE Reserved
- 2013-05-31 CVE Published
- 2020-11-13 First Exploit
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/53635 | Third Party Advisory | |
| http://www.securityfocus.com/bid/60248 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/84723 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 6.0 Search vendor "Google" for product "Sketchup" and version "6.0" | maintenance_6 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 7.0 Search vendor "Google" for product "Sketchup" and version "7.0" | maintenance_1 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 7.1 Search vendor "Google" for product "Sketchup" and version "7.1" | - |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 7.1 Search vendor "Google" for product "Sketchup" and version "7.1" | maintenance_1 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 7.1 Search vendor "Google" for product "Sketchup" and version "7.1" | maintenance_2 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 8.0 Search vendor "Google" for product "Sketchup" and version "8.0" | - |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 8.0 Search vendor "Google" for product "Sketchup" and version "8.0" | maintenance_1 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 8.0 Search vendor "Google" for product "Sketchup" and version "8.0" | maintenance_2 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 8.0 Search vendor "Google" for product "Sketchup" and version "8.0" | maintenance_3 |
Affected
| ||||||
| Google Search vendor "Google" | Sketchup Search vendor "Google" for product "Sketchup" | 8.0 Search vendor "Google" for product "Sketchup" and version "8.0" | maintenance_4 |
Affected
| ||||||
| Trimble Search vendor "Trimble" | Sketchup Search vendor "Trimble" for product "Sketchup" | <= 8.0 Search vendor "Trimble" for product "Sketchup" and version " <= 8.0" | maintenance_5 |
Affected
| ||||||