Required CVE Record Information
Description
Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote attackers to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Encoding field.
References 6 Total
- exchange.xforce.ibmcloud.com: xnview-mbm-bo(59421) vdb-entry
- http://www.coresecurity.com/content/XnView-MBM-Processing-Heap-Overflow
- vupen.com: ADV-2010-1468 vdb-entry
- secunia.com: 40141 third-party-advisory
- securityfocus.com: 40852 vdb-entry
- securitytracker.com: 1024100 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- exchange.xforce.ibmcloud.com: xnview-mbm-bo(59421) vdb-entryx_transferred
- http://www.coresecurity.com/content/XnView-MBM-Processing-Heap-Overflow x_transferred
- vupen.com: ADV-2010-1468 vdb-entryx_transferred
- secunia.com: 40141 third-party-advisoryx_transferred
- securityfocus.com: 40852 vdb-entryx_transferred
- securitytracker.com: 1024100 vdb-entryx_transferred