CVE-2013-5365

Name of the Vulnerable Software and Affected Versions Autodesk SketchBook for Enterprise versions prior to 6.25 Autodesk SketchBook Pro versions prior to 6.25 Autodesk SketchBook Express versions prior to 6.25 Autodesk SketchBook Copic Edition versions prior to 2.0.2

Description The issue allows remote attackers to execute arbitrary code via RLE-compressed channel data in a PSD file. This is due to a heap-based buffer overflow.

Recommendations For Autodesk SketchBook for Enterprise versions prior to 6.25, update to version 6.25 or later. For Autodesk SketchBook Pro versions prior to 6.25, update to version 6.25 or later. For Autodesk SketchBook Express versions prior to 6.25, update to version 6.25 or later. For Autodesk SketchBook Copic Edition versions prior to 2.0.2, update to version 2.0.2 or later.