 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.802815 |
| Categoría: | Buffer overflow |
| Título: | XnView Multiple Buffer Overflow Vulnerabilities - Mar12 (Windows) |
| Resumen: | This host has XnView installed and is prone to multiple heap based; buffer overflow vulnerabilities. |
| Descripción: | Summary: This host has XnView installed and is prone to multiple heap based buffer overflow vulnerabilities. Vulnerability Insight: The flaws are due to: - A signedness error in the FlashPix plugin (Xfpx.dll) when validating buffer sizes to process image's content. - An error when processing image data within Personal Computer eXchange (PCX) files. - A boundary error when parsing a directory, which allows attackers to cause a buffer overflow when browsing folder from an extracted archive file. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code on the system via a specially crafted files or cause a denial of service condition. Affected Software/OS: XnView versions 1.98.5 and prior on windows Solution: Update to XnView version 1.98.8 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
| Referencia Cruzada: |
BugTraq ID: 52405 |
| Copyright | Copyright (C) 2012 Greenbone Networks GmbH |
| Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |