Heap-based buffer overflow in Xjp2.dll in the JPEG2000 plug-in in XnView 1.98.5 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Max CVSS
6.8
EPSS Score
4.57%
Published
2012-02-13
Updated
2017-08-29
Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684.
Max CVSS
9.3
EPSS Score
0.10%
Published
2012-05-09
Updated
2012-05-10
Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0685.
Max CVSS
9.3
EPSS Score
0.10%
Published
2012-05-09
Updated
2012-05-10
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ImageLeftPosition value in an ImageDescriptor structure in a GIF image.
Max CVSS
6.8
EPSS Score
13.07%
Published
2012-07-17
Updated
2012-07-18
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.
Max CVSS
6.8
EPSS Score
8.61%
Published
2012-07-17
Updated
2012-08-01
Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set to LogL.
Max CVSS
6.8
EPSS Score
14.56%
Published
2012-07-17
Updated
2012-07-18
6 vulnerabilities found