Heap-Based Buffer Overflow in Autodesk SketchBook Pro for Enhanced Security
CVE-2014-3939

Currently unrated

Key Information:

Vendor: Autodesk
Status: Sketchbook Pro
Vendor: CVE Published:; 23 July 2014

What is CVE-2014-3939?

A heap-based buffer overflow vulnerability exists in Autodesk SketchBook Pro versions prior to 6.2.6. This vulnerability allows remote attackers to execute arbitrary code through specially crafted layer bitmap data embedded within a PXD file. Exploiting this flaw can compromise system integrity and lead to unauthorized actions. Users are advised to update to the latest version to mitigate potential risks.

References

http://secunia.com/secunia_research/2014-7/

x_refsource_MISC

http://secunia.com/advisories/58000

third-party-advisoryx_refsource_SECUNIA

EPSS Score

12% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 23, 2014
Vulnerability Reserved
Jun 2, 2014