CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-9962
https://notcve.org/view.php?id=CVE-2019-9962
24 Mar 2019 — XnView MP 0.93.1 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to VCRUNTIME140!memcpy. XnView MP 0.93.1en Windows permite que atacantes remotos provoquen una denegación de servicio (cierre inesperado de la aplicación) o, posiblemente, cualquier otro tipo de impacto mediante un archivo modificado. Esto está relacionado con VCRUNTIME140!memcpy. • https://code610.blogspot.com/2019/03/crashing-xnview-248.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-15174
https://notcve.org/view.php?id=CVE-2018-15174
08 Aug 2018 — XnView 2.45 allows remote attackers to cause a denial of service (Read Access Violation at the Instruction Pointer and application crash) or possibly have unspecified other impact via a crafted ICO file. XnView 2.45 permite que atacantes remotos provoquen una denegación de servicio (violación de acceso de lectura en puntero de instrucción y cierre inesperado de la aplicación) o, posiblemente, otro impacto no especificado mediante un archivo ICO manipulado. • http://code610.blogspot.com/2018/08/updating-xnview.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-15175
https://notcve.org/view.php?id=CVE-2018-15175
08 Aug 2018 — XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at Qt5Core!QVariant::~QVariant+0x0000000000000014 and application crash) or possibly have unspecified other impact via a crafted RLE file. XnView 2.45 permite que atacantes remotos provoquen una denegación de servicio (AV de escritura del modo de usuario que comienza en Qt5Core!QVariant::~QVariant+0x0000000000000014 y cierre inesperado de la aplicación) o, posiblemente, otro impacto no especificado mediante un arch... • http://code610.blogspot.com/2018/08/updating-xnview.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-15176
https://notcve.org/view.php?id=CVE-2018-15176
08 Aug 2018 — XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at MSVCR120!memcpy+0x0000000000000074 and application crash) or possibly have unspecified other impact via a crafted RLE file. XnView 2.45 permite que atacantes remotos provoquen una denegación de servicio (AV de escritura del modo de usuario que comienza en MSVCR120!memcpy+0x0000000000000074 y cierre inesperado de la aplicación) o, posiblemente, otro impacto no especificado mediante un archivo RLE manipulado. • http://code610.blogspot.com/2018/08/updating-xnview.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15801
https://notcve.org/view.php?id=CVE-2017-15801
22 Oct 2017 — XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77310000!LdrpResSearchResourceInsideDirectory+0x000000000000029e." XnView Classic para Windows en su versión 2.43 permite que los atacantes provoquen una denegación de servicio o, posiblemente, otro impacto sin espec... • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-15801 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15802
https://notcve.org/view.php?id=CVE-2017-15802
22 Oct 2017 — XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77310000!LdrpResCompareResourceNames+0x0000000000000087." XnView Classic para Windows en su versión 2.43 permite que los atacantes provoquen una denegación de servicio o, posiblemente, otro impacto sin especificar me... • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-15802 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15803
https://notcve.org/view.php?id=CVE-2017-15803
22 Oct 2017 — XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dll file that is mishandled during an attempt to render the DLL icon, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ntdll_77310000!LdrpResCompareResourceNames+0x0000000000000150." XnView Classic para Windows en su versión 2.43 permite que los atacantes provoquen una denegación de servicio o, posiblem... • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-15803 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15772
https://notcve.org/view.php?id=CVE-2017-15772
22 Oct 2017 — XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to "Data from Faulting Address may be used as a return value starting at CADImage+0x0000000000285e9d." XnView Classic para Windows en su versión 2.43 permite que los atacantes provoquen una denegación de servicio o, posiblemente, otro impacto sin especificar mediante un archivo .dwg manipulado. Esta vulnerabilidad está relacionada con "Data from Fau... • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-15772 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15773
https://notcve.org/view.php?id=CVE-2017-15773
22 Oct 2017 — XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADImage+0x0000000000285d79." XnView Classic para Windows en su versión 2.43 permite que los atacantes provoquen una denegación de servicio o, posiblemente, otro impacto sin especificar mediante un archivo .dwg manipulado, relacionado con "Read Access Violation starting at CADImage+0x0000000000285d79". • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-15773 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15774
https://notcve.org/view.php?id=CVE-2017-15774
22 Oct 2017 — XnView Classic for Windows Version 2.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls Code Flow starting at CADImage+0x0000000000221a9a." XnView Classic para Windows en su versión 2.43 permite que los atacantes ejecuten código arbitrario o que provoquen una denegación de servicio mediante un archivo .dwg manipulado. Esta vulnerabilidad está relacionada con "Data from Faulting Address controls Code Flow startin... • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-15774 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •