Unrated severityNVD Advisory· Published Jan 2, 2020· Updated Aug 6, 2024
CVE-2013-3939
CVE-2013-3939
Description
xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-based buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- secunia.com/advisories/52101mitrethird-party-advisoryx_refsource_SECUNIA
- newsgroup.xnview.com/viewtopic.phpmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.