CVE-2012-4894

EUVD-2012-4819
Google SketchUp before 8.0.14346 (aka 8 Maintenance 3) allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted SKP file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Affected Products (NVD)
VendorProductVersion
googlesketchup
𝑥
≤ 8.0
googlesketchup
6.0:maintenance_6
googlesketchup
7.0:maintenance_1
googlesketchup
7.1
googlesketchup
7.1:maintenance_1
googlesketchup
7.1:maintenance_2
googlesketchup
8.0
googlesketchup
8.0:maintenance_1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/85570
http://support.google.com/sketchup/bin/static.py?page=release_notes.cs
http://technet.microsoft.com/security/msvr/msvr12-015
http://www.securityfocus.com/bid/55598
https://exchange.xforce.ibmcloud.com/vulnerabilities/78676
http://osvdb.org/85570
http://support.google.com/sketchup/bin/static.py?page=release_notes.cs
http://technet.microsoft.com/security/msvr/msvr12-015
http://www.securityfocus.com/bid/55598
https://exchange.xforce.ibmcloud.com/vulnerabilities/78676