CVE-2019-12788

Опубликовано: 10 июн. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

An issue was discovered in Photodex ProShow Producer v9.0.3797 (an application that runs with Administrator privileges). It is possible to perform a buffer overflow via a crafted file.

Ссылки

http://packetstormsecurity.com/files/153249/ProShow-9.0.3797-Privilege-Escalation.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/risataimpt/Archivos_del_Blog/tree/master/Proshow
Third Party Advisory
https://risataim.blogspot.com/2019/06/exploit-local-para-proshow.html
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/153249/ProShow-9.0.3797-Privilege-Escalation.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/risataimpt/Archivos_del_Blog/tree/master/Proshow
Third Party Advisory
https://risataim.blogspot.com/2019/06/exploit-local-para-proshow.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:photodex:proshow_producer:9.0.3797:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03277

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-r5c4-262p-m396