Corel Paint Shop Pro Photo CLP file buffer overflow

paintshopphoto-clp-bo (33821) The risk level is classified as HighHigh Risk

Description:

Corel Paint Shop Pro Photo is vulnerable to an unspecified stack-based buffer overflow. By creating a specially-crafted CLP file, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash, if the attacker could persuade the victim to open the malicious file.

Platforms Affected:

  • Corel, Paint Shop Pro Photo 11.20
  • Microsoft, Windows Vista

Remedy:

No remedy available as of July 4, 2009.

Consequences:

Gain Access

References:

  • Corel Paint Shop Pro Photo Web site, Digital Imaging - Corel Paint Shop Pro Photo XI - Corel Corporation at http://www.corel.com/servlet/Satellite/us/en/Product/1155872554948.
  • BID-23604: AccuSoft ImageGear Igcore15d.DLL Malformed CLP File Buffer Overflow Vulnerability
  • CVE-2007-2209: Buffer overflow in igcore15d.dll 15.1.2.0 and 15.2.0.0 for AccuSoft ImageGear, as used in Corel Paint Shop Pro Photo 11.20 and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted .CLP file. NOTE: some details were obtained from third party sources.
  • SA25016: Corel Paint Shop Pro Photo igcore15d.dll CLP File Handling Buffer Overflow
  • SA25050: AccuSoft ImageGear igcore15d.dll Buffer Overflow Vulnerability
  • SECTRACK ID: 1017963: Corel Paint Shop Pro Buffer Overflow in Processing `.clp` Files Let Remote Users Execute Arbitrary Code
  • VUPEN/ADV-2007-1506: Corel Paint Shop Pro Photo CLP File Handling Client-Side Code Execution Vulnerability

Reported:

Apr 23, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page