RSS   Vulnerabilities for 'Photo editor'   RSS

2007-11-15
 
CVE-2007-6009

CWE-119
 

 
Multiple buffer overflows in ACD products allow user-assisted remote attackers to execute arbitrary code via a long section string in a (1) XBM or (2) XPM file to (a) ID_X.apl or (b) IDE_ACDStd.apl. NOTE: the PSP and LHA vectors are already covered by CVE-2007-4344 and CVE-2007-6007. NOTE: these might be integer overflows rather than buffer overflows.

 
 
CVE-2007-6007

CWE-119
 

 
Integer overflow in the ID_PSP.apl plug-in for ACD ACDSee Photo Manager 9.0 build 108, Pro Photo Manager 8.1 build 99, and Photo Editor 4.0 build 195 allows user-assisted remote attackers to execute arbitrary code via a crafted PSP image that triggers a heap-based buffer overflow.

 
 
CVE-2007-4344

CWE-20
 

 
Multiple input validation errors in ACD ACDSee Photo Manager 9.0 build 108, Pro Photo Manager 8.1 build 99, and Photo Editor 4.0 build 195 allow user-assisted remote attackers to execute arbitrary code via a long section string in (1) a PSP image to the ID_PSP.apl plug-in or (2) an LHA archive to the AM_LHA.apl plug-in, resulting in a heap-based buffer overflow.

 

 >>> Vendor: Acdsee 10 Products
Acdsee
Photo editor
Photo manager
Pro photo manager
Fotoslate
Picture frame manager
Photo editor 2008
Acdsee ultimate
Photo studio
Photo studio 2021


Copyright 2024, cxsecurity.com

 

Back to Top