Vulnerability Details CVE-2007-2209
Buffer overflow in igcore15d.dll 15.1.2.0 and 15.2.0.0 for AccuSoft ImageGear, as used in Corel Paint Shop Pro Photo 11.20 and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted .CLP file. NOTE: some details were obtained from third party sources.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.156
EPSS Ranking 94.3%
CVSS Severity
CVSS v2 Score 6.8
References
- http://osvdb.org/35308
- http://osvdb.org/35386
- http://secunia.com/advisories/25016
- http://secunia.com/advisories/25050
- http://www.securityfocus.com/bid/23604
- http://www.securitytracker.com/id?1017963
- http://www.vupen.com/english/advisories/2007/1506
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33821
- https://www.exploit-db.com/exploits/3779
- http://osvdb.org/35308
- http://osvdb.org/35386
- http://secunia.com/advisories/25016
- http://secunia.com/advisories/25050
- http://www.securityfocus.com/bid/23604
- http://www.securitytracker.com/id?1017963
- http://www.vupen.com/english/advisories/2007/1506
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33821
- https://www.exploit-db.com/exploits/3779
Products affected by CVE-2007-2209
-
cpe:2.3:a:accusoft:imagegear:19.10
-
cpe:2.3:a:accusoft:imagegear:19.3.0
-
cpe:2.3:a:accusoft:imagegear:19.4.0
-
cpe:2.3:a:accusoft:imagegear:19.5.0
-
cpe:2.3:a:accusoft:imagegear:19.6.0
-
cpe:2.3:a:accusoft:imagegear:19.7.0
-
cpe:2.3:a:accusoft:imagegear:19.8
-
cpe:2.3:a:accusoft:imagegear:19.9
-
cpe:2.3:a:accusoft:imagegear:20.0
-
cpe:2.3:a:accusoft:imagegear:20.1
-
cpe:2.3:a:corel:paint_shop_pro:11.20