{"id":"CVE-2010-0280","details":"Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c.","modified":"2026-04-10T03:41:05.630549Z","published":"2010-01-15T17:30:00Z","related":["openSUSE-SU-2024:10301-1"],"references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/38185"},{"type":"ADVISORY","url":"http://secunia.com/advisories/38187"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2010/0133"},{"type":"EVIDENCE","url":"http://www.coresecurity.com/content/google-sketchup-vulnerability"},{"type":"EVIDENCE","url":"http://www.securityfocus.com/bid/37708"},{"type":"WEB","url":"http://sketchup.google.com/support/bin/answer.py?hl=en&answer=141303"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/508913/100/0/threaded"}],"schema_version":"1.7.5"}