Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote attackers to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Encoding field.
Max CVSS
9.3
EPSS Score
17.59%
Published
2010-06-16
Updated
2017-08-17
Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow.
Max CVSS
9.3
EPSS Score
6.65%
Published
2010-03-15
Updated
2018-10-10
2 vulnerabilities found