CVE-2017-2886

Name of the Vulnerable Software and Affected Versions ACDSee Ultimate version 10.0.0.292

Description A memory corruption issue exists in the .PSD parsing functionality. This can be triggered by a specially crafted .PSD file, leading to an out of bounds write and potentially allowing code execution. An attacker can exploit this by sending a specific .PSD file.

Recommendations For version 10.0.0.292, consider avoiding the use of the .PSD parsing functionality until a patch is available. As a temporary workaround, restrict the opening of .PSD files from untrusted sources to minimize the risk of exploitation.