ACDSee XPMHeaders Buffer Overflow Vulnerability
BID:23620
Info
ACDSee XPMHeaders Buffer Overflow Vulnerability
| Bugtraq ID: | 23620 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 24 2007 12:00AM |
| Updated: | Feb 27 2008 07:22PM |
| Credit: | Marsu is credited with the discovery of this vulnerability. |
| Vulnerable: |
Acdsystems ACDSee Quick View 9.0 |
| Not Vulnerable: | |
Discussion
ACDSee XPMHeaders Buffer Overflow Vulnerability
ACDSee is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial of service.
This issue affects ACDSee 9.0; other versions may also be vulnerable.
ACDSee is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial of service.
This issue affects ACDSee 9.0; other versions may also be vulnerable.
Exploit / POC
ACDSee XPMHeaders Buffer Overflow Vulnerability
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following exploit is available:
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following exploit is available:
Solution / Fix
ACDSee XPMHeaders Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].