Intrusion Prevention

XPM.File.Headers.Overlong.Section.Buffer.Overflow

Description

This indicates an attack attempt to exploit a stack-based buffer-overflow vulnerability in ACDSee products.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted XPM file. Successful exploitation may allow remote attackers to execute arbitrary code by persuading the victim to open the malicious file with ACDSee.

Affected Products

ACDSee versions 9.x
ACDSee versions 8.x
ACD Systems Inc ACDSee Photo Editor 4.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest versions, available from the web site:
http://www.acdsee.com/