ACDSee TIFF file handling buffer overflow

Added: 09/17/2009
BID: 35175
OSVDB: 54822

Background

ACDSee is a suite of products for viewing and organizing photos.

Problem

A buffer overflow vulnerability allows command execution when a user opens a specially crafted TIFF file.

Resolution

Apply a fix when available. If a fix is not available, do not open untrusted TIFF files.

References

http://secunia.com/advisories/33700

Limitations

Exploit works on ACDSee Systems ACDSee 11.0 Photo Manager and requires a user to open the TIFF file using the affected software.

Platforms

Windows

Back to exploit index