John Bradley: >> Xv >> 3.10a Security Vulnerabilities
Format string vulnerability in xv before 3.10a allows remote attackers to execute arbitrary code via format string specifiers in a filename.
CVSS Score
5.1
EPSS Score
0.017
Published
2005-05-02
Stack-based buffer overflow in xvbmp.c in XV allows remote attackers to execute arbitrary code via a crafted image file.
CVSS Score
7.5
EPSS Score
0.048
Published
2004-12-31
Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3) xvpm.c in XV allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow.
CVSS Score
7.5
EPSS Score
0.048
Published
2004-08-20