logo
DATABASE RESOURCES PRICING ABOUT US

ACDSee TIFF file handling buffer overflow

Description

Added: 09/17/2009 BID: [35175](<http://www.securityfocus.com/bid/35175>) OSVDB: [54822](<http://www.osvdb.org/54822>) ### Background [ACDSee](<http://www.acdsee.com/products/acdsee/>) is a suite of products for viewing and organizing photos. ### Problem A buffer overflow vulnerability allows command execution when a user opens a specially crafted TIFF file. ### Resolution Apply a fix when available. If a fix is not available, do not open untrusted TIFF files. ### References <http://secunia.com/advisories/33700> ### Limitations Exploit works on ACDSee Systems ACDSee 11.0 Photo Manager and requires a user to open the TIFF file using the affected software. ### Platforms Windows