Secunia Research has discovered a vulnerability in Roxio Creator, which can be exploited by malicious people to potentially compromise a user’s system. The vulnerability is caused by an integer overflow error when allocating memory for an image based on its dimensions and can be exploited to corrupt memory via a specially crafted image. Successful exploitation may allow execution of arbitrary code. The vulnerability is confirmed in version 9.0.136. Other versions may also be affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/83382/secunia-roxio.txt
Source: https://packetstormsecurity.com/files/83382/Roxio-Creator-Image-Rendering-Integer-Overflow.html