CVE-2017-10746
https://notcve.org/view.php?id=CVE-2017-10746
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!RtlEnterCriticalSection+0x0000000000000012." XnView Classic para Windows versión 2.40, permite a los atacantes ejecutar código arbitrario o causar una denegación de servicio por medio de un archivo .rle creado, relacionado a un "User Mode Write AV starting at ntdll_77df0000!RtlEnterCriticalSection+0x0000000000000012." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10746 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-9903
https://notcve.org/view.php?id=CVE-2017-9903
XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at Xfpx+0x00000000000117ff." XnView Classic para Windows en su versión 2.40 permite a atacantes remotos ejecutar código mediante un archivo .fpx manipulado, relacionado a "Data from Faulting Address controls Code Flow comenzado en Xfpx+0x00000000000117ff." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9903 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-9902
https://notcve.org/view.php?id=CVE-2017-9902
XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at Xfpx!gffGetFormatInfo+0x0000000000020e91." XnView Classic para Windows en su versión 2.40 permite a atacantes remotos ejecutar código mediante un archivo .fpx manipulado, relacionado a "Data from Faulting Address controls Code Flow comenzado en Xfpx!gffGetFormatInfo+0x0000000000020e91." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9902 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-10759
https://notcve.org/view.php?id=CVE-2017-10759
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpInsertDependencyRecord+0x0000000000000039." XnView Classic para Windows versión 2.40, podría permitir a los atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpInsertDependencyRecord+0x0000000000000039". • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10759 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-9893
https://notcve.org/view.php?id=CVE-2017-9893
XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx!gffGetFormatInfo+0x0000000000012548." XnView Classic para Windows en su versión 2.40 permite a atacantes remotos ejecutar código mediante un archivo .fpx manipulado, relacionado a "User Mode Write AV comenzado en Xfpx!gffGetFormatInfo+0x0000000000012548." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9893 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •