XnView JPEG2000 Buffer Overflow Vulnerability
BID:51896
Info
XnView JPEG2000 Buffer Overflow Vulnerability
| Bugtraq ID: | 51896 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-1051 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 07 2012 12:00AM |
| Updated: | Mar 19 2015 07:35AM |
| Credit: | Parvez Anwar via Secunia |
| Vulnerable: |
XnView XnView 1.98.5 XnView XnView 1.98.2 XnView XnView 1.98.1 XnView XnView 1.98 |
| Not Vulnerable: | |
Discussion
XnView JPEG2000 Buffer Overflow Vulnerability
XnView is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
XnView 1.98.5 is vulnerable; other versions may also be affected.
XnView is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
XnView 1.98.5 is vulnerable; other versions may also be affected.
Exploit / POC
XnView JPEG2000 Buffer Overflow Vulnerability
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Solution / Fix
XnView JPEG2000 Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].