4 matches found
Heap overflow
Heap-based buffer overflow in the xjpegls.dll aka JLS, JPEG-LS, or JPEG lossless format plugin in XnView 1.99 and 1.99.1 allows remote attackers to execute arbitrary code via a crafted JLS image file...
CVE-2012-4988
XnView 1.99 and 1.99.1 are affected by a heap-based buffer overflow in the xjpegls.dll (JPEG-LS) plugin when processing crafted JLS images, enabling remote code execution. The vulnerability arises during JLS decompression in the XnView Formats PlugIn; PoCs and exploits exist (e.g., for XnView 1.9...
XnView 1.99.1 - .JLS File Decompression Heap Overflow
XnView 1.99.1 - .JLS File Decompression Heap Overflow SUMMARY XnView Formats PlugIn is prone to an overflow condition. The JLS Plugin xjpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a...
XnView 1.99.1 - '.JLS' File Decompression Heap Overflow
SUMMARY XnView Formats PlugIn is prone to an overflow condition. The JLS Plugin xjpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a context-dependent attacker could potentially execute...