XNSoft Nconvert 7.136 is vulnerable to Buffer Overflow. There is a User Mode Write AV via a crafted image file. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/175145/XNSoft-Nconvert-7.136-Buffer-Overflow-Denial-Of-Service.html | Third Party Advisory VDB Entry |
http://seclists.org/fulldisclosure/2023/Oct/15 | Exploit Mailing List Third Party Advisory |
https://github.com/mrtouch93/exploits/tree/main/NConvert7.136/User%20Mode%20Write%20AV | Exploit Third Party Advisory |
https://www.xnview.com/en/nconvert/ | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-10-18T00:00:00
Updated: 2023-10-18T15:56:55.040437
Reserved: 2023-09-18T00:00:00
Link: CVE-2023-43250
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-18T16:15:08.790
Modified: 2023-10-25T01:25:13.217
Link: CVE-2023-43250
JSON object: View
Redhat Information
No data.
CWE