Download
| Alert*
oval:org.secpod.oval:def:1562
XnView is installed oval:org.secpod.oval:def:6407 The host is installed with XnView before 1.99 and is prone to multiple heap-based buffer overflow vulnerabilities. The flaws are present in the application, which fails to handle a SGI32LogLum compressed TIFF image or SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set ... oval:org.secpod.oval:def:6406 The host is installed with XnView before 1.99 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted PCT image. Successful exploitation allows remote attackers to cause a denial of service. oval:org.secpod.oval:def:6405 The host is installed with XnView before 1.99 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted ImageLeftPosition value in an ImageDescriptor structure in a GIF image. Successful exploitation allows remote attackers to cau ... oval:org.secpod.oval:def:4162 The host is installed with XnView 1.98.5 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. Successful exploitation could allow attackers to execute ar ... oval:org.secpod.oval:def:5644 The host is installed with XnView 1.98.2 or earlier and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted file containing PSD record types. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:5643 The host is installed with XnView 1.98.2 or earlier and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted file containing PSD record types. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:1563 The host is installed with XnView and is prone to untrusted search path vulnerability. A flaw is present in the application which is caused due to loading an executable file in an insecure manner. Successful exploitation allows remote attacker to execute arbitrary code on the system. |