Lucene search

[email protected]NVD:CVE-2012-1197

HistoryFeb 18, 2012 - 12:55 a.m.

CVE-2012-1197

2012-02-1800:55:02

CWE-189

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

High

EPSS

0.071

Percentile

94.0%

JSON

Integer overflow in the IDE_ACDStd.apl module for ACDSee 14.1 Build 137 allows remote attackers to execute arbitrary code via crafted “image dimension values” in a BMP file, which triggers a heap-based buffer overflow.

Affected configurations

Nvd

Node

acd_systemsacdseeMatch14.1_build_137

VendorProductVersionCPE
acd_systemsacdsee14.1_build_137cpe:2.3:a:acd_systems:acdsee:14.1_build_137:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
acd_systems	acdsee	14.1_build_137	cpe:2.3:a:acd_systems:acdsee:14.1_build_137:::::::*

References

osvdb.org/79305

secunia.com/advisories/47450

www.securityfocus.com/bid/52047

exchange.xforce.ibmcloud.com/vulnerabilities/73242

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

High

EPSS

0.071

Percentile

94.0%

JSON

Related for NVD:CVE-2012-1197

cve1 prion1 cvelist1