Filtered by vendor Xnview
Subscriptions
Total
170 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2013-3941 | 1 Xnview | 1 Xnview | 2024-08-06 | 9.8 Critical |
| Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow. | ||||
| CVE-2013-3939 | 1 Xnview | 1 Xnview | 2024-08-06 | 7.8 High |
| xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-based buffer overflow. | ||||
| CVE-2013-3938 | 1 Xnview | 1 Xnview | 2024-08-06 | N/A |
| Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based buffer overflow. | ||||
| CVE-2013-3493 | 1 Xnview | 1 Xnview | 2024-08-06 | 9.8 Critical |
| XnView 2.03 has an integer overflow vulnerability | ||||
| CVE-2013-3492 | 1 Xnview | 1 Xnview | 2024-08-06 | 9.8 Critical |
| XnView 2.03 has a stack-based buffer overflow vulnerability | ||||
| CVE-2013-3246 | 1 Xnview | 1 Xnview | 2024-08-06 | 7.8 High |
| Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file. | ||||
| CVE-2013-3247 | 1 Xnview | 1 Xnview | 2024-08-06 | 7.8 High |
| Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file. | ||||
| CVE-2013-2577 | 1 Xnview | 1 Xnview | 2024-08-06 | N/A |
| Buffer overflow in XnView before 2.04 allows remote attackers to execute arbitrary code via a crafted PCT file. | ||||
| CVE-2017-15778 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADImage+0x0000000000285de7." | ||||
| CVE-2017-15803 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ntdll_77310000!LdrpResCompareResourceNames+0x0000000000000150." | ||||
| CVE-2017-15784 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to an "Illegal Instruction Violation starting at xnview+0x0000000000370074." | ||||
| CVE-2017-15774 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls Code Flow starting at CADImage+0x0000000000221a9a." | ||||
| CVE-2017-15772 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to "Data from Faulting Address may be used as a return value starting at CADImage+0x0000000000285e9d." | ||||
| CVE-2017-15785 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Data Execution Prevention Violation near NULL starting at Unknown Symbol @ 0x0000000000000000 called from CADImage+0x0000000000286a79." | ||||
| CVE-2017-15802 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77310000!LdrpResCompareResourceNames+0x0000000000000087." | ||||
| CVE-2017-15789 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV starting at CADImage+0x00000000000048e7." | ||||
| CVE-2017-15801 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77310000!LdrpResSearchResourceInsideDirectory+0x000000000000029e." | ||||
| CVE-2017-15780 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADImage+0x0000000000285dad." | ||||
| CVE-2017-15787 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Data Execution Prevention Violation starting at xnview+0x0000000000580063." | ||||
| CVE-2017-15781 | 2 Microsoft, Xnview | 2 Windows, Xnview | 2024-08-05 | N/A |
| XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Read Access Violation on Control Flow starting at CADImage+0x0000000000286a76." | ||||