Design/Logic Flaw

2017-02-2107:59:00

PRIOn knowledge base

www.prio-n.com

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.4%

JSON

FastStone MaxView 3.0 and 3.1 allows user-assisted attackers to cause a denial of service (application crash) via a malformed BMP image with a crafted biSize field in the BITMAPINFOHEADER section.

CPENameOperatorVersion
maxvieweq3.1
maxvieweq3.0

CPE	Name	Operator	Version
	maxview	eq	3.1
	maxview	eq	3.0

References

github.com/ilsani/rd/tree/master/security-advisories/faststone/maxview-cve-2017-6078