Vulnerability Details CVE-2023-43251
XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.1%
CVSS Severity
CVSS v3 Score 7.8
References
- http://packetstormsecurity.com/files/175145/XNSoft-Nconvert-7.136-Buffer-Overflow-Denial-Of-Service.html
- http://seclists.org/fulldisclosure/2023/Oct/15
- https://github.com/mrtouch93/exploits/tree/main/NConvert7.136/SEH
- https://www.xnview.com/en/nconvert/
- http://packetstormsecurity.com/files/175145/XNSoft-Nconvert-7.136-Buffer-Overflow-Denial-Of-Service.html
- http://seclists.org/fulldisclosure/2023/Oct/15
- https://github.com/mrtouch93/exploits/tree/main/NConvert7.136/SEH
- https://www.xnview.com/en/nconvert/