CVE-2011-2595

Name of the Vulnerable Software and Affected Versions ACDSee FotoSlate version 4.0 Build 146

Description The issue concerns multiple stack-based buffer overflows that allow remote attackers to execute arbitrary code. This is achieved by providing a long id parameter in either a String or Int tag within a FotoSlate Project file.

Recommendations For ACDSee FotoSlate version 4.0 Build 146, avoid using long id parameters in String or Int tags in FotoSlate Project files until a patch is available. As a temporary workaround, consider restricting the use of the id parameter in these tags to minimize the risk of exploitation.