RSS   Vulnerabilities for 'Xnview'   RSS

2020-01-27
 
CVE-2013-3493

CWE-190
 
 
XnView 2.03 has an integer overflow vulnerability

 
 
CVE-2013-3492

CWE-787
 
 
XnView 2.03 has a stack-based buffer overflow vulnerability

 
2020-01-02
 
CVE-2013-3941

CWE-787
 
 
Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow.

 
 
CVE-2013-3939

CWE-787
 
 
xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-based buffer overflow.

 
 
CVE-2013-3937

CWE-787
 
 
Heap-based buffer overflow in xnview.exe in XnView before 2.13 allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file.

 
 
CVE-2013-3247

CWE-787
 
 
Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file.

 
 
CVE-2013-3246

CWE-787
 
 
Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file.

 
2019-10-08
 
CVE-2019-17262

CWE-787
 
 
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001fc0.

 
 
CVE-2019-17261

CWE-787
 
 
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001e51.

 
2019-07-04
 
CVE-2019-13262

CWE-119
 
 
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x00000000003283eb.

 

Copyright 2024, cxsecurity.com

 

Back to Top