CVE-2013-3941 - OpenCVE

Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Xnview	Xnview

Configuration 1 [-]

cpe:2.3:a:xnview:xnview:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087
http://secunia.com/advisories/52101

History

No history.

MITRE

Status: PUBLISHED

Assigner: flexera

Published: 2020-01-02T19:11:40

Updated: 2024-08-06T16:30:48.222Z

Reserved: 2013-06-04T00:00:00

Link: CVE-2013-3941

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2020-01-02T20:15:14.457

Modified: 2020-01-08T19:35:55.607

Link: CVE-2013-3941

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "XnView", "vendor": "XnView", "versions": [{"status": "affected", "version": "before 2.13"}]}], "datePublic": "2013-12-19T00:00:00", "descriptions": [{"lang": "en", "value": "Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow."}], "problemTypes": [{"descriptions": [{"description": "Buffer Overflow", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-01-02T19:11:40", "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "shortName": "flexera"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087"}, {"tags": ["x_refsource_MISC"], "url": "http://secunia.com/advisories/52101"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "PSIRT-CNA@flexerasoftware.com", "ID": "CVE-2013-3941", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "XnView", "version": {"version_data": [{"version_value": "before 2.13"}]}}]}, "vendor_name": "XnView"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Buffer Overflow"}]}]}, "references": {"reference_data": [{"name": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087", "refsource": "MISC", "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087"}, {"name": "http://secunia.com/advisories/52101", "refsource": "MISC", "url": "http://secunia.com/advisories/52101"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T16:30:48.222Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://secunia.com/advisories/52101"}]}]}, "cveMetadata": {"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "assignerShortName": "flexera", "cveId": "CVE-2013-3941", "datePublished": "2020-01-02T19:11:40", "dateReserved": "2013-06-04T00:00:00", "dateUpdated": "2024-08-06T16:30:48.222Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:xnview:xnview:*:*:*:*:*:*:*:*", "matchCriteriaId": "C7CE9A60-E0EA-413A-B058-007F50D879F5", "versionEndExcluding": "2.13", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow."}, {"lang": "es", "value": "En la biblioteca Xjp2.dll en XnView versiones anteriores a la versi\u00f3n 2.13, permite a atacantes remotos ejecutar c\u00f3digo arbitrario por medio de (1) el par\u00e1metro Csiz en un marcador SIZ, que desencadena una asignaci\u00f3n de memoria incorrecta, o (2) el campo lqcd en un marcador QCD en un archivo JPEG2000 dise\u00f1ado, lo que conlleva a un desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria."}], "id": "CVE-2013-3941", "lastModified": "2020-01-08T19:35:55.607", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-01-02T20:15:14.457", "references": [{"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Permissions Required", "Vendor Advisory"], "url": "http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Not Applicable", "Third Party Advisory"], "url": "http://secunia.com/advisories/52101"}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}