| CVE-2017-10749 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV near NULL starting at wow64!W… |
| CVE-2017-10748 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at xnview+0x00000000… |
| CVE-2017-10747 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at xnview+0x00000000… |
| CVE-2017-10746 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… |
| CVE-2017-10745 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Stack Buffer Overrun (/GS Exception) starting at… |
| CVE-2017-10744 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Read Access Violation on Control Flow starting a… |
| CVE-2017-10743 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Stack Buffer Overrun (/GS Exception) starting at… |
| CVE-2017-10742 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Data Execution Prevention Violation starting at … |
| CVE-2017-10741 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… |
| CVE-2017-10740 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… |
| CVE-2017-10739 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Data Execution Prevention Violation starting at … |
| CVE-2017-10738 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Data Execution Prevention Violation starting at … |
| CVE-2017-10737 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… |
| CVE-2017-10736 |
high |
7.8 |
7.8 |
|
|
xnview |
9y ago |
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at msvcrt!_VEC_memze… |
| CVE-2012-4988 |
critical |
— |
10.0 |
EXP |
|
xnview |
12y ago |
Heap-based buffer overflow in the xjpegls.dll (aka JLS, JPEG-LS, or JPEG lossless) format plugin in XnView 1.99 and 1.99.1 allows remote attackers to execute arbitrary code via a crafted JLS image fi… |
| CVE-2013-3938 |
critical |
— |
9.3 |
|
|
xnview |
12y ago |
Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based buf… |
| CVE-2013-2577 |
critical |
— |
10.0 |
EXP |
|
xnview |
13y ago |
Buffer overflow in XnView before 2.04 allows remote attackers to execute arbitrary code via a crafted PCT file. |
| CVE-2012-0282 |
medium |
— |
7.8 |
EXP |
|
xnview |
14y ago |
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ImageLeftPosition value in … |
| CVE-2012-0277 |
medium |
— |
7.8 |
EXP |
|
xnview |
14y ago |
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image. |
| CVE-2012-0276 |
medium |
— |
7.8 |
EXP |
|
xnview |
14y ago |
Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed… |
| CVE-2012-0685 |
critical |
— |
9.3 |
|
|
xnview |
14y ago |
Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684. |
| CVE-2012-0684 |
critical |
— |
9.3 |
|
|
xnview |
14y ago |
Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0685. |
| CVE-2012-1051 |
medium |
— |
6.8 |
|
|
xnview |
15y ago |
Heap-based buffer overflow in Xjp2.dll in the JPEG2000 plug-in in XnView 1.98.5 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) m… |
| CVE-2011-1338 |
medium |
— |
6.9 |
|
|
xnview |
15y ago |
Untrusted search path vulnerability in XnView before 1.98.1 allows local users to gain privileges via a Trojan horse .exe file in a folder selected by the "Open containing folder" menu item. |
| CVE-2010-1932 |
critical |
— |
10.0 |
EXP |
|
xnview |
16y ago |
Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote attackers to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Enc… |
| CVE-2009-4001 |
critical |
— |
9.3 |
|
|
xnview |
17y ago |
Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow. |
