SAINT CorporationSAINT:940556AA92FA215704785A4F4DBA5E1AACD Systems Fotoslate PLP File ID Parameter Buffer Overflow
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.904 High
EPSS
Percentile
98.8%
Added: 10/24/2011
CVE: CVE-2011-2595
BID: 49558
OSVDB: 75425
Background
ACD Systems FotoSlate 4 Photo Print Studio allows users to create contact sheets or wallet sized prints, choose themed frames, and create custom calendars.
Problem
Fotoslate 4.0 Build 146 is vulnerable to remote code execution if a user opens a malicious Fotoslate **PLP** file. The vulnerability is due to inadequate boundary checking in **FSEngine4.dll** when processing a long **id** parameter to a **String** tag.
Resolution
Update Fotoslate when a newer release than FotoSlate 4.0 Build 146 is available.
References
<http://secunia.com/advisories/44722>
Limitations
Exploit works on ACD Systems FotoSlate 4.0 Build 146.
The target user must open the exploit file with the affected application.
Platforms
Windows
Related
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.904 High
EPSS
Percentile
98.8%