CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9895
https://notcve.org/view.php?id=CVE-2017-9895
XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "Read Access Violation on Control Flow starting at Xfpx!gffGetFormatInfo+0x0000000000020e95." XnView Classic para Windows en su versión 2.40 permite a atacantes remotos ejecutar código mediante un archivo .fpx manipulado, relacionado a "Read Access Violation on Control Flow comenzado en Xfpx!gffGetFormatInfo+0x0000000000020e95." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9895 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-10769
https://notcve.org/view.php?id=CVE-2017-10769
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!memcmp+0x0000000000000018" (without RPC initialization). XnView Classic para Windows versión 2.40, podría permitir a los atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!memcmp+0x0000000000000018" (sin inicialización RPC). • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10769 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-10760
https://notcve.org/view.php?id=CVE-2017-10760
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at COMCTL32!SetStatusText+0x0000000000000029." XnView Classic para Windows versión 2.40, podría permitir a los atacantes causar una denegación de servicio o posiblemente no especificado otro impacto por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at COMCTL32!SetStatusText+0x0000000000000029". • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10760 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-10762
https://notcve.org/view.php?id=CVE-2017-10762
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpAllocateHeap+0x000000000000042f." XnView Classic para Windows versión 2.40, podría permitir a los atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpAllocateHeap+0x000000000000042f". • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10762 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9907
https://notcve.org/view.php?id=CVE-2017-9907
XnView Classic for Windows Version 2.40 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Possible Stack Corruption starting at Xfpx!gffGetFormatInfo+0x0000000000022e1f." XnView Classic para Windows en su versión 2.40 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante una archivo .fpx manipulado, relacionado a "Possible Stack Corruption comenzando en Xfpx!gffGetFormatInfo+0x0000000000022e1f." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9907 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •