CVE-2013-7388

Name of the Vulnerable Software and Affected Versions Trimble SketchUp versions prior to 13.0.3689

Description A heap-based buffer overflow issue in paintlib allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP).

Recommendations For versions prior to 13.0.3689, update to version 13.0.3689 or later to resolve the issue. As a temporary workaround, consider avoiding the use of RLE4-compressed bitmaps (BMP) in Trimble SketchUp until the update is applied.