Signature Detail
Short Name |
HTTP:STC:DL:ACDSEE-XPM-COLOR |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
ACD Systems ACDSee Products XPM File Colors Parameter Buffer Overflow |
Release Date |
2010/10/06 |
Update Number |
1786 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: ACD Systems ACDSee Products XPM File Colors Parameter Buffer Overflow
This signature detects attempts to exploit a known vulnerability against ACD Systems ACDSee. A successful attack can lead to arbitrary code execution.
Extended Description
ACDSee is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial of service. This issue affects ACDSee 9.0; other versions may also be vulnerable.
Affected Products
- ACD Systems Inc ACDSee Quick View 9.0
References
- BugTraq: 23620
- CVE: CVE-2007-2193