Описание
Integer overflow in Google SketchUp before 7.1 M2 allows remote attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code via a crafted SKP file.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:google:google_sketchup:7.0:*:*:*:*:*:*:*
cpe:2.3:a:google:google_sketchup:7.0.10247:*:*:*:*:*:*:*
cpe:2.3:a:google:google_sketchup:7.1.4871:*:*:*:*:*:*:*
cpe:2.3:a:google:google_sketchup:7.1.6087:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02803
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-189
Связанные уязвимости
github
почти 4 года назад
Integer overflow in Google SketchUp before 7.1 M2 allows remote attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code via a crafted SKP file.
EPSS
Процентиль: 86%
0.02803
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-189