CVE-2007-2209

AccuSoft ImageGear - Buffer Overflow via Crafted .CLP File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2209. PoCs published by Marsu.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Corel Paint Shop Pro Photo v11.20 via a maliciously crafted .CLP file. It overwrites SEH to achieve arbitrary code execution, demonstrated by either launching calc.exe or binding a shell to port 4444.

Description

Buffer overflow in igcore15d.dll 15.1.2.0 and 15.2.0.0 for AccuSoft ImageGear, as used in Corel Paint Shop Pro Photo 11.20 and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted .CLP file. NOTE: some details were obtained from third party sources.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marsu · clocalwindows

https://www.exploit-db.com/exploits/3779

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Corel Paint Shop Pro Photo v11.20 via a maliciously crafted .CLP file. It overwrites SEH to achieve arbitrary code execution, demonstrated by either launching calc.exe or binding a shell to port 4444.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Corel Paint Shop Pro Photo v11.20

No auth needed

Prerequisites: Victim must open the malicious .CLP file

MITRE ATT&CK