Shodan
Vulnerabilities
Vulnerable Software
Xnview:  Security Vulnerabilities
CVE-2020-23886
XnView MP v0.96.4 was discovered to contain a heap overflow which allows attackers to cause a denial of service (DoS) via a crafted pict file. Related to a User Mode Write AV starting at ntdll!RtlpLowFragHeapFree.
CVSS Score
5.5
EPSS Score
0.004
Published
2021-11-10
CVE-2013-3492
XnView 2.03 has a stack-based buffer overflow vulnerability
CVSS Score
9.8
EPSS Score
0.004
Published
2020-01-27
CVE-2013-3493
XnView 2.03 has an integer overflow vulnerability
CVSS Score
9.8
EPSS Score
0.004
Published
2020-01-27
CVE-2013-3939
xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-based buffer overflow.
CVSS Score
7.8
EPSS Score
0.01
Published
2020-01-02
CVE-2013-3941
Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow.
CVSS Score
9.8
EPSS Score
0.053
Published
2020-01-02
CVE-2013-3937
Heap-based buffer overflow in xnview.exe in XnView before 2.13 allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file.
CVSS Score
7.8
EPSS Score
0.012
Published
2020-01-02
CVE-2013-3247
Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file.
CVSS Score
7.8
EPSS Score
0.012
Published
2020-01-02
CVE-2013-3246
Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file.
CVSS Score
7.8
EPSS Score
0.017
Published
2020-01-02
CVE-2019-17261
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001e51.
CVSS Score
7.8
EPSS Score
0.001
Published
2019-10-08
CVE-2019-17262
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001fc0.
CVSS Score
7.8
EPSS Score
0.001
Published
2019-10-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved