PT-2007-3534 · Acd Systems · Acdsee+2

Marsu

Published

2007-04-24

Updated

2017-10-11

CVE-2007-2193

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ACDSee version 9.0 Build 108 ACDSee Pro version 8.1 Build 99 ACDSee Photo Editor version 4.0 Build 195

Description A stack-based buffer overflow issue exists in the ID X.apl plugin, allowing user-assisted remote attackers to execute arbitrary code via a crafted XPM file with a long section string.

Recommendations For ACDSee version 9.0 Build 108, update to a version that fixes the issue in the ID X.apl plugin. For ACDSee Pro version 8.1 Build 99, update to a version that fixes the issue in the ID X.apl plugin. For ACDSee Photo Editor version 4.0 Build 195, update to a version that fixes the issue in the ID X.apl plugin.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2193

Affected Products

Acdsee

Acdsee Photo Editor

Acdsee Pro

PT-2007-3534 · Acd Systems · Acdsee+2

CVE-2007-2193

Related Identifiers

Affected Products

References · 13