Back to search
CVE-2007-4344
Published: Nov 15, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple input validation errors in ACD ACDSee Photo Manager 9.0 build 108, Pro Photo Manager 8.1 build 99, and Photo Editor 4.0 build 195 allow user-assisted remote attackers to execute arbitrary code via a long section string in (1) a PSP image to the ID_PSP.apl plug-in or (2) an LHA archive to the AM_LHA.apl plug-in, resulting in a heap-based buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20071102 Secunia Research: ACDSee Products Image and Archive Plug-insBuffer Overflows
mailing-list
x_refsource_BUGTRAQ
http://www.acdsee.com/support/knowledgebase/article?id=2800
x_refsource_CONFIRM
ADV-2007-3695
vdb-entry
x_refsource_VUPEN
25952
third-party-advisory
x_refsource_SECUNIA
26297
vdb-entry
x_refsource_BID
http://secunia.com/secunia_research/2007-73/advisory/
x_refsource_MISC
3367
third-party-advisory
x_refsource_SREASON
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now