Info

Disclosure

Jul 02, 2012

Discovery

Unknown

Dates

Exploit

Jul 02, 2012

Solution

Unknown

Description

Photodex ProShow Producer is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted load file, a context-dependent attacker can potentially cause execute arbitrary code.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure
OSVDB: Authentication Required

Solution

OSVDB is not aware of a solution for this vulnerability.

Products

Photodex Corporation

Photodex ProShow Producer

5.0.3256

References

Exploit Database: 19563 20036 20109
Metasploit ID: 83745
Other Advisory URL: http://security.inshell.net/advisory/30
Vendor URL: http://www.photodex.com/proshow/producer

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/83745