CVE-2010-0280

Name of the Vulnerable Software and Affected Versions lib3ds versions 1.x Google SketchUp versions 7.x before 7.1 M2

Description The issue is related to an array index error in the lib3ds library, which can be exploited by remote attackers through crafted structures in a 3DS file, potentially leading to memory corruption or arbitrary code execution. The error is probably related to the mesh.c file.

Recommendations For lib3ds version 1.x, update to a version that fixes the array index error. For Google SketchUp versions 7.x before 7.1 M2, update to version 7.1 M2 or later to resolve the issue.