VYPR

Xnview

by Xnview

CVEs (149)

  • CVE-2017-9897HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx+0x000000000000dcab."

  • CVE-2017-9896HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "Read Access Violation on Control Flow starting at Xfpx!gffGetFormatInfo+0x0000000000013e8a."

  • CVE-2017-9895HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "Read Access Violation on Control Flow starting at Xfpx!gffGetFormatInfo+0x0000000000020e95."

  • CVE-2017-9894HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.01

    XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx!gffGetFormatInfo+0x0000000000029272."

  • CVE-2017-9893HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.01

    XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx!gffGetFormatInfo+0x0000000000012548."

  • CVE-2017-9529HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx+0x0000000000004efd."

  • CVE-2017-8781HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted JPEG 2000 file that is mishandled during the opening of a directory in "Browser" mode, because of a "Stack Buffer Overrun" issue.

  • CVE-2017-8381HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mkv file that is mishandled during the opening of a directory in "Browser" mode, because of a "User Mode Write AV near NULL" in XnView.exe.

  • CVE-2017-8282HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.02

    XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mov file that is mishandled during the opening of a directory in "Browser" mode, because of a "User Mode Write AV near NULL" in XnView.exe.

  • CVE-2017-10783HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpFreeHeap+0x000000000000039…

  • CVE-2017-10782HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpFreeHeap+0x00000000000003c…

  • CVE-2017-10781HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpFindLoadedDllByName+0x0000…

  • CVE-2017-10780HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000372b4a."

  • CVE-2017-10779HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000013a20."

  • CVE-2017-10778HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000233125."

  • CVE-2017-10777HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000372b24."

  • CVE-2017-10776HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to a "Read Access Violation starting at ntdll_77df0000!LdrShutdownProcess+0x0000000000000130."

  • CVE-2017-10775HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to a "Read Access Violation starting at GDI32!ScriptGetCMapWithSurrogate+0x00000000000001cb."

  • CVE-2017-10774HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!FindSortHashNode+0x000000000000004…

  • CVE-2017-10773HigJul 5, 2017
    risk 0.51cvss 7.8epss 0.00

    XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at MSCTF!_CtfImeCreateThreadMgr+0x00000000000000…

Page 4 of 8