CVE-2013-3664 PoC — Trimble Navigation Trimble SketchUp 多个缓冲区溢出漏洞

Source

https://github.com/lagartojuancho/CVE-2013-3664_BMP

Associated Vulnerability

Title:Trimble Navigation Trimble SketchUp 多个缓冲区溢出漏洞 (CVE-2013-3664)
Description:Trimble Navigation Trimble SketchUp（前称Google SketchUp）是美国天宝导航（Trimble Navigation）公司的一套环保型3D建模软件。该软件主要应用于建筑、土木、机械、电影和视频游戏设计。 Trimble Navigation Trimble SketchUp 2013 (13.0.3689)之前的版本中存在安全漏洞。远程攻击者可借助特制的调色板表利用该漏洞执行任意代码。

Description

Sketchup BMP Material RLE4 Heap Overflow

Readme

Sketchup BMP Material RLE4 Heap Overflow - CVE-2013-3664
========================================================

SketchUp fails to validate the input when parsing an embedded BMP RLE4 compressed texture. Arbitrary code execution is proved possible after a  malicious texture or thumbnail or background image triggers a heap overflow. The issue can also be triggered when Windows Explorer reads the embedded thumbnail in a .skp file.


Summary
=======
* Title: Sketchup BMP Material RLE4 Heap Overflow
* CVE ID: CVE-2013-3664
* Permalink: http://www.binamuse.com/advisories/BINA-20130521B.txt
* Advisory Published: 2013-05-23
* Class: Boundary Error Condition (Buffer Overflow)

File Snapshot


 [4.0K]  /data/pocs/898e96cc2bf5c5be4b00f128894c3846b76a3c28
├── [ 62K]  BINA-20130521B-exploit.py
├── [675K]  BINA-20130521B-POC-WIN.zip
└── [ 679]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!