CVE-2012-10051

HIGH

Photodex ProShow Producer <5.0.3256 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2012-10051. PoCs published by Metasploit, Julien Ahrens, Julien Ahrens, mr.pr0n, juan vazquez, including Metasploit module exploits/windows/fileformat/proshow_load_bof.

AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in Photodex ProShow Producer 5.0.3256 via a malformed 'load' file, achieving remote code execution when the victim opens the application. The exploit uses SEH overwrites and a custom jump-back payload to trigger the vulnerability.

Description

Photodex ProShow Producer version 5.0.3256 contains a stack-based buffer overflow vulnerability in the handling of plugin load list files. When a specially crafted load file is placed in the installation directory, the application fails to properly validate its contents, leading to a buffer overflow when the file is parsed during startup. Exploitation requires local access to place the file and user interaction to launch the application.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/20109

This Metasploit module exploits a stack-based buffer overflow in Photodex ProShow Producer 5.0.3256 via a malformed 'load' file, achieving remote code execution when the victim opens the application. The exploit uses SEH overwrites and a custom jump-back payload to trigger the vulnerability.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Photodex ProShow Producer 5.0.3256
No auth needed
Prerequisites: Victim must store the crafted 'load' file in the installation directory and open ProShow Producer
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Julien Ahrens · textdoswindows
https://www.exploit-db.com/exploits/19563

This exploit demonstrates a stack-based buffer overflow in Photodex ProShow Producer by creating a malicious 'load' file. The PoC writes a payload of 9848 'A's, followed by 4 'B's (EIP overwrite), and 100 'C's to trigger the overflow.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Photodex ProShow Producer v5.0.3256
No auth needed
Prerequisites: Ability to place a malicious 'load' file in the application directory
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Julien Ahrens, mr.pr0n, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/proshow_load_bof.rb

This Metasploit module exploits a stack-based buffer overflow in Photodex ProShow Producer 5.0.3256 via a maliciously crafted 'load' file. It leverages SEH overwrites and a jump-back payload to achieve remote code execution when the victim opens the application.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Photodex ProShow Producer 5.0.3256
No auth needed
Prerequisites: Victim must store the crafted 'load' file in the installation directory · Victim must open ProShow Producer
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/19563
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/20109
Vendor Advisory third-party-advisory
https://www.fortiguard.com/encyclopedia/ips/32753

Scores

CVSS v4 8.4
EPSS 0.0033
EPSS Percentile 24.4%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-121
Status published
Products (1)
Photodex Corporation/ProShow Producer 5.0.3256
Published Aug 08, 2025
Tracked Since Feb 18, 2026