2 matches found
CVE-2017-14274
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent Write Address starting at jbig2dec+0x0000000000008706."...
CVE-2017-14274
XnView Classic for Windows 2.40 is affected by a vulnerability in processing JB2/JBIG2 data that allows arbitrary code execution or denial of service. Root cause: Data from a faulting address controls the subsequent write address in the jbig2dec path (offset around 0x8706). Impact is arbitrary co...