Lucene search

[email protected]CVE-2007-1943

HistoryApr 11, 2007 - 1:19 a.m.

CVE-2007-1943

2007-04-1101:19:00

[email protected]

web.nvd.nist.gov

cve-2007-1943

acdsee

photo manager

integer overflow

denial of service

arbitrary code

bmp image

vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.7%

JSON

Integer overflow in ACDSee Photo Manager 9.0 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via large width image sizes in a crafted BMP image, as demonstrated by w3intof.bmp and w4intof.bmp.

Affected configurations

NVD

Node

acd_systemsacdsee_photo_managerMatch9.0

CPENameOperatorVersion
acd_systems:acdsee_photo_manageracd systems acdsee photo managereq9.0

CPE	Name	Operator	Version
acd_systems:acdsee_photo_manager	acd systems acdsee photo manager	eq	9.0

References

ifsec.blogspot.com/2007/04/several-windows-image-viewers.html

osvdb.org/34663

secunia.com/advisories/24779

securityreason.com/securityalert/2558

www.acdsee.com/support/knowledgebase/article?id=2800

www.securityfocus.com/archive/1/464726/100/0/threaded

www.securityfocus.com/bid/23317

www.vupen.com/english/advisories/2007/1283

Social References

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.7%

JSON

Related for CVE-2007-1943

cvelist1 nvd1 prion1 openvas2 freebsd1 nessus1 securityvulns1