Lucene search
K

4 matches found

Prion
Prion
added 2014/07/09 2:55 p.m.21 views

Heap overflow

Heap-based buffer overflow in the xjpegls.dll aka JLS, JPEG-LS, or JPEG lossless format plugin in XnView 1.99 and 1.99.1 allows remote attackers to execute arbitrary code via a crafted JLS image file...

9.3CVSS8.6AI score0.09854EPSS
Exploits3References7Affected Software1
CVE
CVE
added 2014/07/09 2:0 p.m.99 views

CVE-2012-4988

XnView 1.99 and 1.99.1 are affected by a heap-based buffer overflow in the xjpegls.dll (JPEG-LS) plugin when processing crafted JLS images, enabling remote code execution. The vulnerability arises during JLS decompression in the XnView Formats PlugIn; PoCs and exploits exist (e.g., for XnView 1.9...

9.3CVSS8AI score0.09854EPSS
Exploits3References7Affected Software1
exploitpack
exploitpack
added 2012/10/04 12:0 a.m.49 views

XnView 1.99.1 - .JLS File Decompression Heap Overflow

XnView 1.99.1 - .JLS File Decompression Heap Overflow SUMMARY XnView Formats PlugIn is prone to an overflow condition. The JLS Plugin xjpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a...

9.3CVSS0.8AI score0.09854EPSS
Exploits3
Exploit DB
Exploit DB
added 2012/10/04 12:0 a.m.53 views

XnView 1.99.1 - '.JLS' File Decompression Heap Overflow

SUMMARY XnView Formats PlugIn is prone to an overflow condition. The JLS Plugin xjpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a context-dependent attacker could potentially execute...

9.3CVSS6.5AI score0.09854EPSS
Exploits3
Rows per page
Query Builder