CVE-2009-3214

Photodex ProShow Gold 4.0.2549 - Stack-Based Buffer Overflow via Crafted Slideshow Project File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2009-3214. PoCs published by Metasploit, hack4love, corelanc0d3r, including Metasploit module exploits/windows/fileformat/proshow_cellimage_bof.

AI-analyzed exploit summary This exploit targets a stack-based buffer overflow in ProShow Gold v4.0.2549 by crafting a malicious PSH file. It leverages SEH overwrites and a custom jump-back shellcode to achieve remote code execution when the victim opens the file.

Description

Multiple stack-based buffer overflows in Photodex ProShow Gold 4.0.2549 allow remote attackers to execute arbitrary code via a crafted Slideshow project (.psh) file, related to the (1) cell[n].images[m].image and (2) cell[n].sound.file fields.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/16655

This exploit targets a stack-based buffer overflow in ProShow Gold v4.0.2549 by crafting a malicious PSH file. It leverages SEH overwrites and a custom jump-back shellcode to achieve remote code execution when the victim opens the file.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ProShow Gold v4.0.2549
No auth needed
Prerequisites: Victim must open the malicious PSH file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by hack4love · perllocalwindows
https://www.exploit-db.com/exploits/9519

This exploit targets a buffer overflow vulnerability in ProShow Producer/Gold v4.0.2549 via a maliciously crafted .psh file. It leverages SEH overwrite and shellcode execution to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ProShow Producer/Gold v4.0.2549
No auth needed
Prerequisites: Victim must open the malicious .psh file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by corelanc0d3r · perllocalwindows
https://www.exploit-db.com/exploits/9483

This exploit targets a buffer overflow vulnerability in ProShow Gold 4.0 via a maliciously crafted .psh file. It leverages SEH overwrites and includes a Metasploit-generated shellcode payload to execute arbitrary code (e.g., calc.exe).

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Photodex ProShow Gold 4.0
No auth needed
Prerequisites: Victim must open the malicious .psh file in ProShow Gold 4.0
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC GREAT
by jduck · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/proshow_cellimage_bof.rb

This Metasploit module exploits a stack-based buffer overflow in ProShow Gold v4.0.2549 via a maliciously crafted PSH file. It leverages SEH overwrites and a jump-back payload to achieve remote code execution when the victim opens the file.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ProShow Gold v4.0.2549
No auth needed
Prerequisites: Victim must open the malicious PSH file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/505957/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/52606
Various Sources x_refsource_misc
http://blog.bkis.com/?p=737
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36357
Exploit vdb-entry x_refsource_osvdb
http://osvdb.org/57226

Scores

EPSS 0.3079
EPSS Percentile 98.0%

Details

CWE
CWE-119
Status published
Products (1)
photodex/proshow_gold 4.0.2549
Published Sep 16, 2009
Tracked Since Feb 18, 2026