HTTP: ACD Systems ACDSee Products XBM File Handling Buffer Overflow
This signature detects attempts to exploit a known vulnerability in ACD Systems ACDSee. A code execution vulnerability exists in multiple ACDSee products. The flaw is due to a boundary error when processing crafted X Bitmap Graphic (XBM) files. A remote unauthenticated attacker can exploit this vulnerability by persuading the target user to open a malicious XBM file with the affected application. A successful attack could allow for arbitrary code being injected and executed with the privileges of the currently logged on user.
Extended Description
Multiple ACDSee products are prone to a remote buffer-overflow vulnerability because they fail to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. The following are vulnerable: ACDSee Photo Editor 2008 build 286 and prior ACDSee Photo Manager 8.1 build 99 and prior ACDSee Photo Manager 9.0 build 108 and prior
Affected Products
Acd_systems_inc acdsee_photo_manager
Short Name
HTTP:STC:DL:ACDSEE-XBM-WIDTH
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ACD ACDSee Buffer File Handling Overflow Products Systems XBM bid:37685
Release Date
09/16/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Acd_systems_inc