CVE-2013-3664
Trimble SketchUp < 2013 (13.0.3689) - Remote Code Execution via MAC Pict Texture Color Palette Table
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2013-3664. PoCs published by defrancescojp.
AI-analyzed exploit summary This PoC exploits a stack-based buffer overflow in Trimble SketchUp (CVE-2013-3664) by crafting a malicious MAC Pict file with an oversized color palette, leading to arbitrary code execution. The exploit leverages a boundary error in the palette parsing logic to corrupt stack memory.
Description
Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662. NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue.
Exploits (2)
This PoC exploits a stack-based buffer overflow in Trimble SketchUp (CVE-2013-3664) by crafting a malicious MAC Pict file with an oversized color palette, leading to arbitrary code execution. The exploit leverages a boundary error in the palette parsing logic to corrupt stack memory.
This is a working proof-of-concept exploit for CVE-2013-3664, targeting a heap overflow vulnerability in Trimble SketchUp's BMP RLE4 image parsing. The exploit constructs a malicious BMP file to trigger the overflow and includes a return address for potential code execution.