2 matches found
CVE-2013-3247
CVE-2013-3247 is a heap-based buffer overflow in XnView (xnview.exe) prior to 2.03. It can be triggered by a crafted RLE-compressed layer in an XCF file, allowing remote code execution on the affected host. Remediation: upgrade to XnView 2.03 or later (as specified). Exploit details beyond the de...
XnView 2.x < 2.03 Multiple Buffer Overflow Vulnerabilities
The version of XnView installed on the remote Windows host is 2.x, earlier than 2.03. It is, therefore, reportedly affected by the following buffer overflow vulnerabilities: - A stack-based buffer overflow exists in the 'XCF' image handling layer. CVE-2013-3246 - A heap-based buffer overflow exis...