CVE-2012-0276 - OpenCVE

Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set to LogL.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Xnview	Xnview

Configuration 1 [-]

cpe:2.3:a:xnview:xnview:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://newsgroup.xnview.com/viewtopic.php?f=35&t=25858
http://secunia.com/advisories/48666
http://www.exploit-db.com/exploits/19337
http://www.exploit-db.com/exploits/19338
http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=48
http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=49

History

No history.

MITRE

Status: PUBLISHED

Assigner: flexera

Published: 2012-07-17T21:00:00

Updated: 2024-08-06T18:23:29.319Z

Reserved: 2011-12-30T00:00:00

Link: CVE-2012-0276

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2012-07-17T21:55:01.193

Modified: 2012-07-18T04:00:00.000

Link: CVE-2012-0276

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-06-21T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set to LogL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2012-07-25T09:00:00", "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "shortName": "flexera"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=49"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=25858"}, {"name": "48666", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/48666"}, {"name": "19338", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/19338"}, {"tags": ["x_refsource_MISC"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=48"}, {"name": "19337", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/19337"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "PSIRT-CNA@flexerasoftware.com", "ID": "CVE-2012-0276", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set to LogL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=49", "refsource": "MISC", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=49"}, {"name": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=25858", "refsource": "CONFIRM", "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=25858"}, {"name": "48666", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/48666"}, {"name": "19338", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/19338"}, {"name": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=48", "refsource": "MISC", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=48"}, {"name": "19337", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/19337"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T18:23:29.319Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=49"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=25858"}, {"name": "48666", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/48666"}, {"name": "19338", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "http://www.exploit-db.com/exploits/19338"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=48"}, {"name": "19337", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "http://www.exploit-db.com/exploits/19337"}]}]}, "cveMetadata": {"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "assignerShortName": "flexera", "cveId": "CVE-2012-0276", "datePublished": "2012-07-17T21:00:00", "dateReserved": "2011-12-30T00:00:00", "dateUpdated": "2024-08-06T18:23:29.319Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:xnview:xnview:*:*:*:*:*:*:*:*", "matchCriteriaId": "5B5EA72D-BC3C-47E5-9EDF-A17310EB59FC", "versionEndIncluding": "1.98.8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set to LogL."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de buffer de memoria din\u00e1mica en XnView anterior a v1.99 permite a los atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda de aplicaci\u00f3n) y posiblemente ejecutar c\u00f3digo arbitrario a trav\u00e9s de un (1) imagen SGI32LogLum TIFF comprimido o (2) SGI32LogLum imagen TIFF comprimido con el conjunto de codificaci\u00f3n photometricinterpretation a logL."}], "id": "CVE-2012-0276", "lastModified": "2012-07-18T04:00:00.000", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2012-07-17T21:55:01.193", "references": [{"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=25858"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/48666"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/19337"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/19338"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=48"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=49"}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}