CVE-2013-5365

Autodesk SketchBook <6.25 - Buffer Overflow

Title source: llm

Description

Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro, and Express before 6.25, and Copic Edition before 2.0.2 allows remote attackers to execute arbitrary code via RLE-compressed channel data in a PSD file.

References (3)

Core 3

Core References

Patch, Vendor Advisory x_refsource_confirm

http://www.sketchbook.com/news/important-security-update-for-sketchbook.html

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/55000

Vendor Advisory x_refsource_misc

http://secunia.com/secunia_research/2014-5

Scores

EPSS 0.0618

EPSS Percentile 91.0%

Details

CWE

CWE-119

Status published

Products (4)

autodesk/sketchbook < 6.2.4

autodesk/sketchbook_express < 6.2.4

autodesk/sketchbook_for_enterprise_2014 < 6.2.4

autodesk/sketchbook_pro < 6.2.4

Published Apr 02, 2014

Tracked Since Feb 18, 2026