CVE-2019-12810

Name of the Vulnerable Software and Affected Versions ALSee versions 5.3 through 8.39

Description A memory corruption issue exists in the .PSD parsing functionality. This can be exploited by a specially crafted .PSD file, leading to an out of bounds write and potentially resulting in code execution. An attacker could execute arbitrary code by persuading a victim to open a specially-crafted .PSD file.

Recommendations For versions 5.3 through 8.39, update to a version that fixes this issue to prevent potential code execution. As a temporary workaround, consider avoiding the use of the .PSD parsing functionality until a patch is available. Restrict access to opening .PSD files from untrusted sources to minimize the risk of exploitation.