CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-1461

Buffer overflow in XnView 1.92.1 allows user-assisted remote attackers to execute arbitrary code via a long filename argument on the command line. NOTE: it is unclear whether there are common handler configurations in which this argument is controlled by an attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.051

EPSS Ranking 89.4%

CVSS Severity

CVSS v2 Score 7.6

References

http://securityreason.com/securityalert/3761
http://www.click-internet.fr/index.php?cki=News&news=9
http://www.securityfocus.com/archive/1/489658/100/0/threaded
http://www.securityfocus.com/bid/28259
https://exchange.xforce.ibmcloud.com/vulnerabilities/41245
http://securityreason.com/securityalert/3761
http://www.click-internet.fr/index.php?cki=News&news=9
http://www.securityfocus.com/archive/1/489658/100/0/threaded
http://www.securityfocus.com/bid/28259
https://exchange.xforce.ibmcloud.com/vulnerabilities/41245

Products affected by CVE-2008-1461

Xnview » Xnview » Version: 1.92.1

cpe:2.3:a:xnview:xnview:1.92.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-1461

Products

Pricing

Contact Us