N/A

An exploitable out of bounds write exists in the CAL parsing functionality of Canvas Draw version 5.0.0. A specially crafted CAL image processed via the application can lead to an out of bounds write overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution.

N/A

N/A

ACD Systems Canvas Draw 缓冲区错误漏洞

ACD Systems Canvas Draw是美国ACD Systems公司的一款图形编辑工具。该产品主要用于创建和编辑图像等。 ACD Systems Canvas Draw 5.0.0版本中的CAL解析功能存在缓冲区错误漏洞。攻击者可借助特制的CAL图像利用该漏洞覆盖任意数据，执行代码。

N/A

N/A