Xnview : Security Vulnerabilities, CVEs, Published In 2017 (Code Execution)
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV starting at CADImage+0x00000000000048e7."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV starting at CADImage+0x0000000000002d83."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Data Execution Prevention Violation starting at xnview+0x0000000000580063."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Data Execution Prevention Violation near NULL starting at Unknown Symbol @ 0x0000000000000000 called from CADImage+0x0000000000286a79."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to an "Illegal Instruction Violation starting at xnview+0x0000000000370074."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV starting at CADImage+0x00000000000032eb."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "Read Access Violation on Control Flow starting at CADImage+0x0000000000286a76."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls subsequent Write Address starting at CADImage+0x00000000000034b0."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to a "User Mode Write AV near NULL starting at CADImage+0x0000000000288750."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls Code Flow starting at CADImage+0x0000000000221a9a."
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-10-22
Updated
2017-10-24
XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000000000870f."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-18
Updated
2017-09-21
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent Write Address starting at jbig2dec+0x0000000000008823."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-18
Updated
2017-09-21
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-11
Updated
2017-09-13
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent Write Address starting at jbig2dec+0x0000000000008706."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-11
Updated
2017-09-18
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!RtlInterlockedPopEntrySList+0x00000000000003b0."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-11
Updated
2017-09-18
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000000000595d."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-11
Updated
2017-09-18
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!RtlImpersonateSelfEx+0x000000000000024e."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-11
Updated
2017-09-18
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!RtlFillMemoryUlong+0x0000000000000010."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-09-11
Updated
2017-09-18
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV near NULL starting at ntdll_77df0000!RtlEnterCriticalSection+0x0000000000000012."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-10
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-10
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at xnview+0x000000000022bf8d."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-13
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at xnview+0x000000000037a8aa."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-10
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!RtlEnterCriticalSection+0x0000000000000012."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-10
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Stack Buffer Overrun (/GS Exception) starting at ntdll_77df0000!RtlProcessFlsData+0x00000000000000b0."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-10
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Read Access Violation on Control Flow starting at COMCTL32!CToolTipsMgr::s_ToolTipsWndProc+0x0000000000000032."
Max CVSS
7.8
EPSS Score
0.04%
Published
2017-07-05
Updated
2017-07-10