FKIE_CVE-2009-2375

Vulnerability from fkie_nvd - Published: 2009-07-08 15:30 - Updated: 2026-04-23 00:35
Severity ?
Summary
Stack-based buffer overflow in Photo DVD Maker 8.02, and possibly earlier versions, allows remote attackers to execute arbitrary code via a long File_Name parameter in a .pdm file. NOTE: some of these details are obtained from third party information.
References
cve@mitre.orghttp://blog.bkis.com/?p=713
cve@mitre.orghttp://secunia.com/advisories/35709Vendor Advisory
cve@mitre.orghttp://www.securityfocus.com/archive/1/504738/100/0/threaded
cve@mitre.orghttp://www.vupen.com/english/advisories/2009/1793Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://blog.bkis.com/?p=713
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/35709Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/504738/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/1793Vendor Advisory
Impacted products
Vendor Product Version
photo-dvd-maker photo_dvd_maker *
photo-dvd-maker photo_dvd_maker 5.20
photo-dvd-maker photo_dvd_maker 5.30
photo-dvd-maker photo_dvd_maker 5.31
photo-dvd-maker photo_dvd_maker 6.0
photo-dvd-maker photo_dvd_maker 6.01
photo-dvd-maker photo_dvd_maker 6.10
photo-dvd-maker photo_dvd_maker 6.12
photo-dvd-maker photo_dvd_maker 6.20
photo-dvd-maker photo_dvd_maker 6.22
photo-dvd-maker photo_dvd_maker 6.23
photo-dvd-maker photo_dvd_maker 6.30
photo-dvd-maker photo_dvd_maker 6.32
photo-dvd-maker photo_dvd_maker 6.40
photo-dvd-maker photo_dvd_maker 6.52
photo-dvd-maker photo_dvd_maker 6.53
photo-dvd-maker photo_dvd_maker 6.54
photo-dvd-maker photo_dvd_maker 6.55
photo-dvd-maker photo_dvd_maker 6.60
photo-dvd-maker photo_dvd_maker 6.61
photo-dvd-maker photo_dvd_maker 7.03
photo-dvd-maker photo_dvd_maker 7.04
photo-dvd-maker photo_dvd_maker 7.05
photo-dvd-maker photo_dvd_maker 7.10
photo-dvd-maker photo_dvd_maker 7.11
photo-dvd-maker photo_dvd_maker 7.12
photo-dvd-maker photo_dvd_maker 7.15
photo-dvd-maker photo_dvd_maker 7.22
photo-dvd-maker photo_dvd_maker 7.30
photo-dvd-maker photo_dvd_maker 7.32
photo-dvd-maker photo_dvd_maker 7.33
photo-dvd-maker photo_dvd_maker 7.34
photo-dvd-maker photo_dvd_maker 7.40
photo-dvd-maker photo_dvd_maker 7.50
photo-dvd-maker photo_dvd_maker 7.52
photo-dvd-maker photo_dvd_maker 7.55
photo-dvd-maker photo_dvd_maker 7.56
photo-dvd-maker photo_dvd_maker 7.58
photo-dvd-maker photo_dvd_maker 7.71
photo-dvd-maker photo_dvd_maker 7.73
photo-dvd-maker photo_dvd_maker 7.77
photo-dvd-maker photo_dvd_maker 7.78
photo-dvd-maker photo_dvd_maker 7.80
photo-dvd-maker photo_dvd_maker 7.90
photo-dvd-maker photo_dvd_maker 7.91
photo-dvd-maker photo_dvd_maker 7.92
photo-dvd-maker photo_dvd_maker 7.93
photo-dvd-maker photo_dvd_maker 7.96
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "82F446D4-54E6-4817-8CCA-C5AA56B8BEEE",
              "versionEndIncluding": "8.0.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:5.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5E065A4-F86B-43FD-855F-F5FFA8DDA9E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:5.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A18FED6-AA4C-4881-9652-02153FAFB9F4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:5.31:*:*:*:*:*:*:*",
              "matchCriteriaId": "863BDDC0-560B-4436-959D-935E975AC60C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B42951A-56EE-435B-A0A9-A0FA5559DFFB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.01:*:*:*:*:*:*:*",
              "matchCriteriaId": "697F53E1-86B6-4527-B120-E47598876C8D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEA3BA81-FF0C-4DC7-840A-2A6137FFC0D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2CA8993-FB6E-4AC1-95C1-5E90947D18AF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A84A298-BB77-421F-AC1F-D415F394FFDD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "21D353CD-3FA5-474B-A3A3-8933066F1FDB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "80BD0DF4-C243-49E3-ADC4-85F7F7BA11F7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "163F7B3A-C2F7-48E7-A6FB-BA3D719B550F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "B13DCBA0-9E15-4399-8176-4A6C3CE01807",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.40:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AAA3D9F-8E48-4DB1-A08B-A32856D0C8BB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B319AB1-2A41-41FB-B288-292904979F81",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.53:*:*:*:*:*:*:*",
              "matchCriteriaId": "31AFBB53-FC6C-477C-8BBA-49AD39083ADD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.54:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA777219-6685-4E34-99A3-1F00CF31B345",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.55:*:*:*:*:*:*:*",
              "matchCriteriaId": "469ED982-D5E8-4295-90F4-40E4DB4F57ED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB02EA1E-C67B-4EC9-BBBB-85D0E149FF90",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.61:*:*:*:*:*:*:*",
              "matchCriteriaId": "E7908C21-41C7-4988-B65B-20A4481FA386",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.03:*:*:*:*:*:*:*",
              "matchCriteriaId": "DBDB3833-BD47-47FC-9992-65A78A686974",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.04:*:*:*:*:*:*:*",
              "matchCriteriaId": "CA08E730-D717-41ED-BF24-4B1CF2AA734F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.05:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CD29D41-CC8E-427B-8F16-5373D0699252",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "2AB04C64-7233-4034-AB1F-57C07F506176",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "99B63449-D670-4977-82E4-356C57D4AF3D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E57ED15-00C6-4E02-8D82-50EAB66F06E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F7EA13C-E60E-430C-94F3-A9835B12703D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "8451D723-CFB5-4CDF-ABAC-ABC02BB5F595",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "A364D75A-3E6D-4624-AA67-AC9714903897",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "309B36BB-E47C-48EE-A4DD-74821CC5F6E5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.33:*:*:*:*:*:*:*",
              "matchCriteriaId": "1839A67B-65CE-464A-A4E1-BCD997EBFA54",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.34:*:*:*:*:*:*:*",
              "matchCriteriaId": "B9C5D56D-27E9-485A-A7D9-4070037A9159",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.40:*:*:*:*:*:*:*",
              "matchCriteriaId": "4AA51476-46C8-46BA-92D7-EDC9169EA23F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.50:*:*:*:*:*:*:*",
              "matchCriteriaId": "4ED30CF8-11C3-4764-9FCE-BED458272FBA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "7664C3C7-DC93-4070-A8EE-C0A93A79787D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.55:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D1756CD-1073-4C67-A6E0-D003BD197CC5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.56:*:*:*:*:*:*:*",
              "matchCriteriaId": "BBEC3BEC-7748-4F49-8A90-1F6A9C1BAD0E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.58:*:*:*:*:*:*:*",
              "matchCriteriaId": "C20A5288-CC86-47B2-87A2-7D9E75B5F33C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.71:*:*:*:*:*:*:*",
              "matchCriteriaId": "EFB34337-F162-44C1-98E8-929C80B4542C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.73:*:*:*:*:*:*:*",
              "matchCriteriaId": "A9EBF2FF-1FE7-4637-9417-82D16C4E3BAD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.77:*:*:*:*:*:*:*",
              "matchCriteriaId": "197438B1-6504-4B9A-9D9E-B206063866F5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.78:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5C2E63A-DD22-4237-8EA9-E48F52F7799E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.80:*:*:*:*:*:*:*",
              "matchCriteriaId": "D65CD3BF-631D-450D-BB96-F00AAA2C688F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.90:*:*:*:*:*:*:*",
              "matchCriteriaId": "5CEB996D-5B4B-485F-994C-415C75D5D5DC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.91:*:*:*:*:*:*:*",
              "matchCriteriaId": "62DF298B-8D64-4070-9A10-093C4AF944EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.92:*:*:*:*:*:*:*",
              "matchCriteriaId": "664E2F5C-C3E1-44FB-8CD4-86787A66DCCA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.93:*:*:*:*:*:*:*",
              "matchCriteriaId": "17EA1489-AE4C-43A2-A9F1-DABB4E11BBC3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.96:*:*:*:*:*:*:*",
              "matchCriteriaId": "317C5754-68DD-476D-B3A6-26AA0A89DA0B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Stack-based buffer overflow in Photo DVD Maker 8.02, and possibly earlier versions, allows remote attackers to execute arbitrary code via a long File_Name parameter in a .pdm file.  NOTE: some of these details are obtained from third party information."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en pila en Photo DVD Maker v.8.02, y posiblemente versiones anteriores, permite a los atacantes remotos ejecutar a su elecci\u00f3n c\u00f3digo a trav\u00e9s del par\u00e1metro File_Name de un archivo .pdm. NOTE: some of these details are obtained from third party information."
    }
  ],
  "id": "CVE-2009-2375",
  "lastModified": "2026-04-23T00:35:47.467",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2009-07-08T15:30:01.563",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://blog.bkis.com/?p=713"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/35709"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/504738/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2009/1793"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://blog.bkis.com/?p=713"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/35709"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/504738/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2009/1793"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.