Skip to main content

Google SketchUp SKP File Processing Vulnerability

Last Update Date: 20 Sep 2012 10:37 Release Date: 20 Sep 2012 4861 Views

RISK: Medium Risk

TYPE: Clients - Graphics & Design

TYPE: Graphics & Design

A vulnerability has been identified in Google SketchUp, which can be exploited by malicious people to compromise a user's system.

 

The vulnerability is caused due to an unspecified error when processing SKP files and can be exploited to corrupt memory.

 

Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file.


Impact

  • Remote Code Execution

System / Technologies affected

  • Version 8.0.11752.0 (Maintenance Release 2) and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 8.0.14346 (Maintenance Release 3) or later.

Vulnerability Identifier


Source


Related Link