Unrated severityNVD Advisory· Published Apr 2, 2014· Updated May 6, 2026

CVE-2013-5365

Description

Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro, and Express before 6.25, and Copic Edition before 2.0.2 allows remote attackers to execute arbitrary code via RLE-compressed channel data in a PSD file.

Affected products

Autodesk/Sketchbook
cpe:2.3:a:autodesk:sketchbook:*:*:*:*:copic:*:*:*
Range: <=6.2.4
Autodesk/Sketchbook Express
cpe:2.3:a:autodesk:sketchbook_express:*:*:*:*:*:*:*:*
Range: <=6.2.4
Autodesk/Sketchbook For Enterprise 2014
cpe:2.3:a:autodesk:sketchbook_for_enterprise_2014:*:*:*:*:*:*:*:*
Range: <=6.2.4
Autodesk/Sketchbook Pro
cpe:2.3:a:autodesk:sketchbook_pro:*:*:*:*:*:*:*:*
Range: <=6.2.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.sketchbook.com/news/important-security-update-for-sketchbook.htmlnvdPatchVendor Advisory
secunia.com/advisories/55000nvdVendor Advisory
secunia.com/secunia_research/2014-5nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000