Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based buffer overflow.
References
Link | Resource |
---|---|
http://secunia.com/advisories/56172 | Vendor Advisory |
http://www.securityfocus.com/bid/66187 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: flexera
Published: 2014-03-18T14:00:00
Updated: 2014-03-18T11:57:00
Reserved: 2013-06-04T00:00:00
Link: CVE-2013-3938
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-03-18T17:02:52.233
Modified: 2014-03-19T13:59:18.763
Link: CVE-2013-3938
JSON object: View
Redhat Information
No data.
CWE