CVE-2009-4251

Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote attackers to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2366.

Published: Dec 10, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-4251
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
corel / paint_shop_pro	8.10	8.10.x

http://aluigi.freeforums.org/post8780.html
http://osvdb.org/60592
http://secunia.com/advisories/37591
http://www.packetstormsecurity.org/0912-exploits/jasc-overflow.txt
http://www.securityfocus.com/bid/37204
http://www.vupen.com/english/advisories/2009/3418
https://exchange.xforce.ibmcloud.com/vulnerabilities/54551

Vulnerability Database

289,784

CVE-2009-4251