CVE-2017-9903
https://notcve.org/view.php?id=CVE-2017-9903
XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at Xfpx+0x00000000000117ff." XnView Classic para Windows en su versión 2.40 permite a atacantes remotos ejecutar código mediante un archivo .fpx manipulado, relacionado a "Data from Faulting Address controls Code Flow comenzado en Xfpx+0x00000000000117ff." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9903 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-10744
https://notcve.org/view.php?id=CVE-2017-10744
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Read Access Violation on Control Flow starting at COMCTL32!CToolTipsMgr::s_ToolTipsWndProc+0x0000000000000032." XnView Classic para Windows versión 2.40, permite a los atacantes ejecutar código arbitrario o causar una denegación de servicio por medio de un archivo .rle creado, relacionado a una "Read Access Violation on Control Flow starting at COMCTL32!CToolTipsMgr::s_ToolTipsWndProc+0x0000000000000032." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10744 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-10750
https://notcve.org/view.php?id=CVE-2017-10750
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV near NULL starting at ntdll_77df0000!RtlEnterCriticalSection+0x0000000000000012." XnView Classic para Windows versión 2.40, permite a los atacantes ejecutar código arbitrario o causar una denegación de servicio por medio de un archivo .rle creado, relacionado a un "User Mode Write AV near NULL starting at ntdll_77df0000!RtlEnterCriticalSection+0x0000000000000012." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10750 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-10759
https://notcve.org/view.php?id=CVE-2017-10759
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpInsertDependencyRecord+0x0000000000000039." XnView Classic para Windows versión 2.40, podría permitir a los atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpInsertDependencyRecord+0x0000000000000039". • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10759 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-10762
https://notcve.org/view.php?id=CVE-2017-10762
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpAllocateHeap+0x000000000000042f." XnView Classic para Windows versión 2.40, podría permitir a los atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpAllocateHeap+0x000000000000042f". • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10762 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •