{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-03-10T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T18:57:01", "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "shortName": "flexera"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://secunia.com/secunia_research/2009-60/"}, {"name": "20100310 Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/509999/100/0/threaded"}, {"name": "xnview-dicom-bo(56802)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56802"}, {"name": "38629", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/38629"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=19469"}, {"name": "62829", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/62829"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "PSIRT-CNA@flexerasoftware.com", "ID": "CVE-2009-4001", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://secunia.com/secunia_research/2009-60/", "refsource": "MISC", "url": "http://secunia.com/secunia_research/2009-60/"}, {"name": "20100310 Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/509999/100/0/threaded"}, {"name": "xnview-dicom-bo(56802)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56802"}, {"name": "38629", "refsource": "BID", "url": "http://www.securityfocus.com/bid/38629"}, {"name": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=19469", "refsource": "CONFIRM", "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=19469"}, {"name": "62829", "refsource": "OSVDB", "url": "http://www.osvdb.org/62829"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T06:45:50.924Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://secunia.com/secunia_research/2009-60/"}, {"name": "20100310 Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/509999/100/0/threaded"}, {"name": "xnview-dicom-bo(56802)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56802"}, {"name": "38629", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/38629"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=19469"}, {"name": "62829", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/62829"}]}]}, "cveMetadata": {"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "assignerShortName": "flexera", "cveId": "CVE-2009-4001", "datePublished": "2010-03-12T20:00:00", "dateReserved": "2009-11-19T00:00:00", "dateUpdated": "2024-08-07T06:45:50.924Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:xnview:xnview:*:*:*:*:*:*:*:*", "matchCriteriaId": "AE50603B-B8C1-451E-B9F2-F54208F553A3", "versionEndIncluding": "1.97.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.0:a:*:*:*:*:*:*", "matchCriteriaId": "D1160EF2-C078-4C0A-999B-05B6D42FC65F", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.01:*:*:*:*:*:*:*", "matchCriteriaId": "26750A49-32A9-41C4-B4FC-4C53650D5B5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.02:*:*:*:*:*:*:*", "matchCriteriaId": "E93C259A-6715-468F-A1E1-CF954761EE84", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.03:*:*:*:*:*:*:*", "matchCriteriaId": "70F7DBD6-D249-4D64-B2FB-D486785F26E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.04:*:*:*:*:*:*:*", "matchCriteriaId": "662F38C4-C400-435E-BCD4-0021AB6FA4FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.05:*:*:*:*:*:*:*", "matchCriteriaId": "E2B4B6DE-A8D1-4B76-9873-F3FF386B6647", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.05:b:*:*:*:*:*:*", "matchCriteriaId": "2F17BB19-F2EC-49EA-95FE-55126352D8CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.05:c:*:*:*:*:*:*", "matchCriteriaId": "BE7CE2C1-5D75-4760-891D-E53409F08A94", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.06:*:*:*:*:*:*:*", "matchCriteriaId": "773D4D55-D241-41DD-A802-90F6B8037544", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.07:*:*:*:*:*:*:*", "matchCriteriaId": "F39E52FA-38AA-44CD-A027-9189BCD27E78", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.08:*:*:*:*:*:*:*", "matchCriteriaId": "9F5AD70E-6E6A-4D26-BF7B-FDBC169AE62A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.09:*:*:*:*:*:*:*", "matchCriteriaId": "874FB295-26DC-4BD4-84A7-D396D4B9F8BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.10:*:*:*:*:*:*:*", "matchCriteriaId": "34CE10DC-AC95-4A92-BF18-DE839FEB3EFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.11:*:*:*:*:*:*:*", "matchCriteriaId": "7D5D72A3-82A9-44FF-AF40-AE4534DF13D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.12:*:*:*:*:*:*:*", "matchCriteriaId": "EE4D2D41-0934-4F2E-9033-7866342A6148", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.13:*:*:*:*:*:*:*", "matchCriteriaId": "0DCC4DC4-FBB3-4B85-B7A1-0FDEE513DA01", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.14:*:*:*:*:*:*:*", "matchCriteriaId": "3CA5158C-0F58-4C3D-8E36-61231E1D1F6B", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.15:*:*:*:*:*:*:*", "matchCriteriaId": "37B04085-8D2F-4DFD-B577-AFDCAA366335", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.16:*:*:*:*:*:*:*", "matchCriteriaId": "AD62B251-470E-4D4F-93D2-E87453037CBC", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.17:*:*:*:*:*:*:*", "matchCriteriaId": "ACB7E1A0-63FD-4608-A070-D4D867671055", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.17:a:*:*:*:*:*:*", "matchCriteriaId": "28452A67-510F-4D6A-A96D-E51C0DD8B6E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.18:*:*:*:*:*:*:*", "matchCriteriaId": "9B481D02-6F2F-4230-94BB-3EC257993D4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.18.1:*:*:*:*:*:*:*", "matchCriteriaId": "4AB44AE2-8FCA-406B-AEE0-E724518CE74E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.19:*:*:*:*:*:*:*", "matchCriteriaId": "41353F26-E155-41D5-9412-4E3FC28F1701", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.20:*:*:*:*:*:*:*", "matchCriteriaId": "55F1494F-8A2C-4362-832B-3B3887794F7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.21:*:*:*:*:*:*:*", "matchCriteriaId": "29E0879C-7580-49ED-93A5-7E072B3B6D88", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.22:*:*:*:*:*:*:*", "matchCriteriaId": "7ABD9EED-E230-455E-9052-23C08EE392D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.23:*:*:*:*:*:*:*", "matchCriteriaId": "4D0FA50E-9965-4FA3-BB85-E63CD0824914", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.24:*:*:*:*:*:*:*", "matchCriteriaId": "02C9ACEF-6B7C-42D5-8D68-04C7915B9039", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.25:*:*:*:*:*:*:*", "matchCriteriaId": "29EF6CFD-A098-41D6-9E8F-9842A9C16048", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.25:a:*:*:*:*:*:*", "matchCriteriaId": "102E7705-5533-4214-ACEE-B7C02CB454E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.30:*:*:*:*:*:*:*", "matchCriteriaId": "EFB38B70-E59C-42CE-877C-D3322157E483", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.31:*:*:*:*:*:*:*", "matchCriteriaId": "9A159A1F-85FB-4C5C-8D8E-399F30CDA115", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.32:*:*:*:*:*:*:*", "matchCriteriaId": "67738CAF-186D-4831-AE04-E9E509BBC7EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.33:*:*:*:*:*:*:*", "matchCriteriaId": "52D407A4-8499-4DA2-99D7-0DE4C5F7F2BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.34:*:*:*:*:*:*:*", "matchCriteriaId": "F6FECC88-9938-4AD0-889F-559C8F99B5BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.35:*:*:*:*:*:*:*", "matchCriteriaId": "E4B324FA-DC14-44F8-8B63-0A2C71455726", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.36:*:*:*:*:*:*:*", "matchCriteriaId": "8B1C31A9-1239-4B22-AAA9-8294714EF677", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.37:*:*:*:*:*:*:*", "matchCriteriaId": "98E67FA4-9AB4-4A2D-8B61-A90A09FA1484", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.40:*:*:*:*:*:*:*", "matchCriteriaId": "F988A618-07A7-438C-9FE2-EE2D1C9A1874", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.41:*:*:*:*:*:*:*", "matchCriteriaId": "24A5B8B1-64FB-4B4D-825C-9F5049F61484", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.45:*:*:*:*:*:*:*", "matchCriteriaId": "06D2393E-715C-4B26-8868-AB0A71F22CA3", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.46:*:*:*:*:*:*:*", "matchCriteriaId": "679BF820-BF6B-4004-9F4D-7CE883456C62", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.50:*:*:*:*:*:*:*", "matchCriteriaId": "C0897791-B53F-4724-80F5-099DA55E2F7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.50.1:*:*:*:*:*:*:*", "matchCriteriaId": "348D00F9-5BF2-4B16-9DC7-5165E92C8610", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.55:*:*:*:*:*:*:*", "matchCriteriaId": "6911582E-232F-44D8-82E6-104BD10F93E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.60:*:*:*:*:*:*:*", "matchCriteriaId": "1CA514C3-D3BA-449E-A3E3-46917666F425", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.61:*:*:*:*:*:*:*", "matchCriteriaId": "6B4D2CAD-8714-4CE4-969B-C157F33C5AA2", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.65:*:*:*:*:*:*:*", "matchCriteriaId": "724E0679-4A89-4F7A-AF41-EA9C3A5C7C0E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.66:*:*:*:*:*:*:*", "matchCriteriaId": "4EBA50FC-6C50-42C5-8361-0165C7BE844B", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.67:*:*:*:*:*:*:*", "matchCriteriaId": "38F201D3-52E9-4D1E-9CDF-7224DA766BA9", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.68:*:*:*:*:*:*:*", "matchCriteriaId": "66EB8513-6378-49E6-B7F7-52C5FEA40452", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.68.1:*:*:*:*:*:*:*", "matchCriteriaId": "FF190D40-A8FA-43BA-AE0E-4ED50ED2B14E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.70:*:*:*:*:*:*:*", "matchCriteriaId": "0E27EB1D-5AE3-4002-829B-6AA0AE8D60F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.70.2:*:*:*:*:*:*:*", "matchCriteriaId": "2FB57494-C072-4C99-A0D2-207E2DEA76C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.70.3:*:*:*:*:*:*:*", "matchCriteriaId": "3A5798EA-8ADC-4632-BBD4-811207EAFCA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.70.4:*:*:*:*:*:*:*", "matchCriteriaId": "DE2BA7BA-EACB-41C5-9C0C-376678990766", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.74:*:*:*:*:*:*:*", "matchCriteriaId": "A195F27B-4B38-4882-B34C-D729CC8ACB99", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.80:*:*:*:*:*:*:*", "matchCriteriaId": "FC73F60A-D89E-46FE-BA89-EAFE509489D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.80.1:*:*:*:*:*:*:*", "matchCriteriaId": "5CA0EDE4-DF5A-4152-B113-75E93910F556", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.80.2:*:*:*:*:*:*:*", "matchCriteriaId": "2427F9F0-76C3-4C53-A794-6C0E839A1BD9", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.80.3:*:*:*:*:*:*:*", "matchCriteriaId": "D4400B8A-5D9B-4E68-830D-28D70969DDA9", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.82:*:*:*:*:*:*:*", "matchCriteriaId": "0E21984E-6830-44B9-BFCD-5EFC9886272E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.82.2:*:*:*:*:*:*:*", "matchCriteriaId": "16CBF0CE-9CBC-4C12-8061-B186543ABF0A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.82.3:*:*:*:*:*:*:*", "matchCriteriaId": "5B628ABE-2FB9-477E-859A-51AD323BF64D", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.82.4:*:*:*:*:*:*:*", "matchCriteriaId": "7A66BCB0-D555-4627-BADA-806DA84E3167", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.90:*:*:*:*:*:*:*", "matchCriteriaId": "A2346275-34F4-456E-8A9D-BB5DB24487D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.90.1:*:*:*:*:*:*:*", "matchCriteriaId": "ACA55EEC-4213-42B6-9C1A-FE9CB076DEBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.90.3:*:*:*:*:*:*:*", "matchCriteriaId": "D0F3174A-3C30-4FBC-8478-21DA00661F4A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91:*:*:*:*:*:*:*", "matchCriteriaId": "779BD454-9656-4B71-899E-FE0CC2413435", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91.1:*:*:*:*:*:*:*", "matchCriteriaId": "37E3E487-26EC-4843-A80A-B02D6180FCB0", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91.2:*:*:*:*:*:*:*", "matchCriteriaId": "323F2315-A433-4278-B4B1-F089A2F3E31A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91.3:*:*:*:*:*:*:*", "matchCriteriaId": "1C8E049E-4353-41A1-AB90-107D4CDB291A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91.4:*:*:*:*:*:*:*", "matchCriteriaId": "52354ABE-D603-4D6D-99AA-3EB3CA33DF96", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91.5:*:*:*:*:*:*:*", "matchCriteriaId": "0E2E41CB-D8AC-4D33-A81D-A66C3CFBE644", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.91.6:*:*:*:*:*:*:*", "matchCriteriaId": "7B014AC9-6A9B-49AE-806F-DF3683169DA1", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.92:*:*:*:*:*:*:*", "matchCriteriaId": "26269B37-EE6D-4829-8100-656AFC6D706D", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.92.1:*:*:*:*:*:*:*", "matchCriteriaId": "01370703-08C0-49C3-A7F6-5C223FB146C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.93:*:*:*:*:*:*:*", "matchCriteriaId": "222D7302-E49E-4BD8-9E4D-872AA3103A69", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.93.1:*:*:*:*:*:*:*", "matchCriteriaId": "F10DEFA8-377A-434D-A353-4C428A9A13F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.93.2:*:*:*:*:*:*:*", "matchCriteriaId": "481D1D7F-5A8A-4A5D-A499-A733ACA00CD4", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.93.3:*:*:*:*:*:*:*", "matchCriteriaId": "4D686020-C181-4F84-8418-C90ABE387D7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.93.4:*:*:*:*:*:*:*", "matchCriteriaId": "6A9BF2F4-8821-48E8-8421-AF0AA761EF55", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.93.6:*:*:*:*:*:*:*", "matchCriteriaId": "1FB56C26-5E49-47BB-89DE-C501400329FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.94:*:*:*:*:*:*:*", "matchCriteriaId": "6AE38635-D538-4D61-83D9-61D7D3A89C27", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.94.1:*:*:*:*:*:*:*", "matchCriteriaId": "FC83C981-C43B-4B8E-A912-2F4729F77B97", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.94.2:*:*:*:*:*:*:*", "matchCriteriaId": "7DD418E1-79FA-4942-AB0D-9B45C1368890", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.95:*:*:*:*:*:*:*", "matchCriteriaId": "C0AE1B44-0384-4043-9892-FE57E530BE08", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.95.1:*:*:*:*:*:*:*", "matchCriteriaId": "6BD61FD5-A98B-4793-B7B6-D25307B89F5A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.95.2:*:*:*:*:*:*:*", "matchCriteriaId": "48950A60-115D-4685-B3D2-6AE54AE2737E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.95.3:*:*:*:*:*:*:*", "matchCriteriaId": "C64D9A65-BE9C-4295-9DAD-B3DB9E915E71", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.95.4:*:*:*:*:*:*:*", "matchCriteriaId": "9D4996E2-0085-44FE-8C29-A4734A1D61FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.96:*:*:*:*:*:*:*", "matchCriteriaId": "3C9B7628-C72F-44BD-92BB-2E85DEAA003E", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.96.1:*:*:*:*:*:*:*", "matchCriteriaId": "E05C35C3-3BBA-43FD-AE8D-C132AB6330F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.96.2:*:*:*:*:*:*:*", "matchCriteriaId": "FB5B1D98-83E7-41C3-84E2-D0552B37644F", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.96.5:*:*:*:*:*:*:*", "matchCriteriaId": "19D77398-388F-420C-94D1-C1EAC1635C02", "vulnerable": true}, {"criteria": "cpe:2.3:a:xnview:xnview:1.97:*:*:*:*:*:*:*", "matchCriteriaId": "5ACCCCC3-0331-4ABA-9ED8-9C1E1381FE1A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow."}, {"lang": "es", "value": "Desbordamiento de entero en XnView anterior a v1.97.2, podr\u00eda permitir a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de uba imagen DICOM con unas dimensiones manipuladas, provocando un desbordamiento de b\u00fafer basado en memoria din\u00e1mica (heap)."}], "id": "CVE-2009-4001", "lastModified": "2018-10-10T19:47:59.393", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2010-03-15T13:28:25.183", "references": [{"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Patch"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=19469"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/secunia_research/2009-60/"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.osvdb.org/62829"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.securityfocus.com/archive/1/509999/100/0/threaded"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.securityfocus.com/bid/38629"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56802"}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}