XnView 'MBM' Processing Buffer Overflow Vulnerability (Windows) Network Vulnerability

Summary

This host has XnView installed and is prone to buffer overflow vulnerability. Vulnerabilities Insight: The flaw is due to improper bounds checking when processing 'MBM' (MultiBitMap) files, which could be exploited to cause a heap overflow.

Impact

Successful exploitation will allow attackers to overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the application to crash. Impact Level: System/Application

Solution

Update to XnView version 1.97.5 For updates refer to http://www.xnview.com/

Affected

XnView versions prior to 1.97.5 on windows

References

http://securitytracker.com/alerts/2010/Jun/1024100.html
http://www.coresecurity.com/content/XnView-MBM-Processing-Heap-Overflow
http://www.vupen.com/english/advisories/2010/1468
http://xforce.iss.net/xforce/xfdb/59421

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1932

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
CCProxy CONNECTION Request Buffer Overflow Vulnerability
Attachmate Reflection FTP Client LIST Command Remote Heap Buffer Overflow Vulnerability
ALZip MIM File Processing Buffer Overflow Vulnerability
Adobe Flash CS3 SWF Processing Buffer Overflow Vulnerabilities

Take action and discover your vulnerabilities