Autodesk SketchBook Pro < 6.2.5 / SketchBook Copic Edition < 2.0.2 Heap Buffer Overflow
High Nessus Plugin ID 77369
SynopsisThe remote host has a graphics editing application installed that is affected by a heap-based buffer overflow vulnerability.
DescriptionThe version of Autodesk SketchBook installed on the remote host is Pro prior to 6.2.5 or Copic Edition prior to 2.0.2. It is, therefore, affected by a heap-based buffer overflow vulnerability. The flaw exists when decompressing RLE-compressed channel data in PSD files, since user-supplied input is not correctly validated. Using a specially crafted PSD file, an attacker could cause a denial of service or execute arbitrary code.
SolutionUpgrade to SketchBook Pro 6.2.5 / Copic Edition 2.0.2 or later.