2 matches found
CVE-2013-3937
CVE-2013-3937 is a heap-based buffer overflow in XnView's xnview.exe prior to 2.13 that allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file. Affected product: XnView (Windows). Root cause: inadequate bounds checking when processing BMP data. Impact: arbitrary ...
XnView 2.x < 2.13 Multiple Buffer Overflows
The version of XnView 2.x installed on the remote Windows host is earlier than 2.13. It is, therefore, reportedly affected by the following buffer overflow vulnerabilities: - A remote, heap-based buffer overflow vulnerability exists due to an error in the 'xnview.exe' file when processing BMP...