PT-2012-1557 · Google · Google Sketchup

David Weston

Published

2012-04-17

Updated

2012-04-18

CVE-2011-2478

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google SketchUp versions prior to 8

Description The issue arises from improper handling of edge geometry in SketchUp files, allowing remote attackers to execute arbitrary code via a crafted file.

Recommendations For Google SketchUp versions prior to 8, update to version 8 or later to resolve the issue.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2011-2478

Affected Products

Google Sketchup

PT-2012-1557 · Google · Google Sketchup

CVE-2011-2478

Weakness Enumeration

Related Identifiers

Affected Products

References · 3