CVE-2013-3664 PoC — Trimble Navigation Trimble SketchUp 多个缓冲区溢出漏洞

Source

https://github.com/defrancescojp/CVE-2013-3664_MAC

Associated Vulnerability

Title:Trimble Navigation Trimble SketchUp 多个缓冲区溢出漏洞 (CVE-2013-3664)
Description:Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662. NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue.

Description

Sketchup MAC Pict Material Palette Stack Corruption

Readme

Sketchup MAC Pict Material Palette Stack Corruption - CVE-2013-3664
===================================================================

SketchUp fails to validate the input when parsing an embedded MACPict texture. Arbitrary code execution is proved possible after a malicious texture or thumbnail or background image triggers a stack overflow.  The issue can also be triggered when Windows Explorer reads the embedded thumbnail in a .skp file.

Summary
=======
* Title: Sketchup MAC Pict Material Palette Stack Corruption
* CVE ID: CVE-2013-3664
* Permalink: http://www.binamuse.com/advisories/BINA-20130521A.txt
* Advisory Published: 2013-05-23
* Class: Boundary Error Condition (Buffer Overflow)

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!