Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-08-11
Updated
2023-08-17
Buffer Overflow vulnerability in XNView version 2.49.3, allows local attackers to execute arbitrary code via crafted TIFF file.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-08-11
Updated
2023-08-17
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001fc0.
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-10-08
Updated
2019-10-10
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001e51.
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-10-08
Updated
2019-10-10
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x00000000003283eb.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000328384.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000327a07.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000032e566.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000328165.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x00000000003273aa.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000032e849.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2020-08-24
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000327464.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2021-07-21
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000032e808.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2021-07-21
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000385474.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2021-07-21
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000030ecfa.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-06-30
Updated
2019-07-03
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000026b739.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-06-30
Updated
2019-07-03
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000384e2a.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-06-30
Updated
2019-07-03
XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at MSVCR120!memcpy+0x0000000000000074 and application crash) or possibly have unspecified other impact via a crafted RLE file.
Max CVSS
7.8
EPSS Score
0.11%
Published
2018-08-08
Updated
2018-10-04
XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at Qt5Core!QVariant::~QVariant+0x0000000000000014 and application crash) or possibly have unspecified other impact via a crafted RLE file.
Max CVSS
7.8
EPSS Score
0.11%
Published
2018-08-08
Updated
2018-10-04
XnView 2.45 allows remote attackers to cause a denial of service (Read Access Violation at the Instruction Pointer and application crash) or possibly have unspecified other impact via a crafted ICO file.
Max CVSS
7.8
EPSS Score
0.11%
Published
2018-08-08
Updated
2018-10-04
XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ntdll_77310000!LdrpResCompareResourceNames+0x0000000000000150."
Max CVSS
7.8
EPSS Score
0.06%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77310000!LdrpResCompareResourceNames+0x0000000000000087."
Max CVSS
7.8
EPSS Score
0.06%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77310000!LdrpResSearchResourceInsideDirectory+0x000000000000029e."
Max CVSS
7.8
EPSS Score
0.06%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV starting at CADImage+0x00000000000048e7."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV starting at CADImage+0x0000000000002d83."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24