QwikSec

Security Database

CVE

CWE

Training

CVE-2019-12810

Published: Aug 30, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A memory corruption vulnerability exists in the .PSD parsing functionality of ALSee v5.3 ~ v8.39. A specially crafted .PSD file can cause an out of bounds write vulnerability resulting in code execution. By persuading a victim to open a specially-crafted .PSD file, an attacker could execute arbitrary code.

Vendor	Product	Versions
ESTSOFT	ALSee	affected `5.3 ~ 8.39`

Weaknesses (CWE)

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35131

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.