The host is installed with Google SketchUp before 13.0.3689 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted RLE4-compressed bitmap (BMP). Successful exploitation allows remote attackers to execute arbitrary code.