Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xnview vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2007-2194
Stack-based buffer overflow in XnView 1.90.3 allows user-assisted remote malicious users to execute arbitrary code via a crafted XPM file with a long section string. NOTE: some of these details are obtained from third party information.
Gentoo Xnview 1.90.3
1 EDB exploit
935
VMScore
CVE-2012-4988
Heap-based buffer overflow in the xjpegls.dll (aka JLS, JPEG-LS, or JPEG lossless) format plugin in XnView 1.99 and 1.99.1 allows remote malicious users to execute arbitrary code via a crafted JLS image file.
Xnview Xnview 1.99
Xnview Xnview 1.99.1
1 EDB exploit
935
VMScore
CVE-2013-2577
Buffer overflow in XnView prior to 2.04 allows remote malicious users to execute arbitrary code via a crafted PCT file.
Xnview Xnview 1.97.5
Xnview Xnview 1.97.6
Xnview Xnview 1.98.4
Xnview Xnview 1.98.5
Xnview Xnview 1.93.4
Xnview Xnview 1.93.6
Xnview Xnview 1.95.4
Xnview Xnview 1.99.1
Xnview Xnview
Xnview Xnview 1.97.4
Xnview Xnview 1.98.2
Xnview Xnview 1.98.3
Xnview Xnview 1.93.2
Xnview Xnview 1.93.3
Xnview Xnview 1.95.2
Xnview Xnview 1.95.3
Xnview Xnview 1.97.1
Xnview Xnview 1.97.2
Xnview Xnview 1.82.4
Xnview Xnview 1.90
Xnview Xnview 1.91.5
Xnview Xnview 1.91.6
1 EDB exploit
935
VMScore
CVE-2010-1932
Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote malicious users to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Encoding field.
Xnview Xnview 1.97.4
1 EDB exploit
935
VMScore
CVE-2008-2427
Stack-based buffer overflow in NConvert 4.92, GFL SDK 2.82, and XnView 1.93.6 on Windows and 1.70 on Linux and FreeBSD allows user-assisted remote malicious users to execute arbitrary code via a crafted format keyword in a Sun TAAC file.
Pagesperso-orange Gfl Sdk 2.82
Pagesperso-orange Nconvert 4.92
Pagesperso-orange Xnview 1.93.6
Pagesperso-orange Xnview 1.70
1 EDB exploit
828
VMScore
CVE-2013-3938
Integer overflow in xnview.exe in XnView 2.13 allows remote malicious users to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based buffer overflow.
Xnview Xnview 2.13
828
VMScore
CVE-2012-0684
Integer overflow in XnViewer (aka XnView) prior to 1.98.5 allows remote malicious users to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0685.
Xnview Xnview 1.25
Xnview Xnview 1.40
Xnview Xnview 1.36
Xnview Xnview 1.31
Xnview Xnview 1.61
Xnview Xnview 1.55
Xnview Xnview 1.70.2
Xnview Xnview 1.68.1
Xnview Xnview 1.04
Xnview Xnview 1.05
Xnview Xnview 1.10
Xnview Xnview 1.12
Xnview Xnview 1.06
Xnview Xnview 1.18
Xnview Xnview 1.19
Xnview Xnview 1.95.4
Xnview Xnview 1.95.2
Xnview Xnview 1.96.2
Xnview Xnview 1.82.4
Xnview Xnview 1.90.1
Xnview Xnview 1.70.4
Xnview Xnview 1.80
828
VMScore
CVE-2012-0685
Integer overflow in XnViewer (aka XnView) prior to 1.98.5 allows remote malicious users to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684.
Xnview Xnview 1.25
Xnview Xnview 1.24
Xnview Xnview 1.36
Xnview Xnview 1.34
Xnview Xnview 1.61
Xnview Xnview 1.55
Xnview Xnview 1.68.1
Xnview Xnview 1.67
Xnview Xnview 1.05
Xnview Xnview 1.0
Xnview Xnview 1.12
Xnview Xnview 1.06
Xnview Xnview 1.19
Xnview Xnview 1.15
Xnview Xnview 1.95.2
Xnview Xnview 1.96.5
Xnview Xnview 1.82.4
Xnview Xnview 1.90.1
Xnview Xnview 1.80
Xnview Xnview 1.80.2
Xnview Xnview 1.93.6
Xnview Xnview 1.94.1
828
VMScore
CVE-2009-4001
Integer overflow in XnView prior to 1.97.2 might allow remote malicious users to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow.
Xnview Xnview 1.96
Xnview Xnview 1.95.4
Xnview Xnview 1.94
Xnview Xnview 1.93.6
Xnview Xnview 1.91.6
Xnview Xnview 1.91.5
Xnview Xnview 1.90
Xnview Xnview 1.82.4
Xnview Xnview 1.80
Xnview Xnview 1.74
Xnview Xnview 1.67
Xnview Xnview 1.66
Xnview Xnview 1.45
Xnview Xnview 1.41
Xnview Xnview 1.32
Xnview Xnview 1.31
Xnview Xnview 1.21
Xnview Xnview 1.20
Xnview Xnview 1.19
Xnview Xnview 1.14
Xnview Xnview 1.13
Xnview Xnview 1.06
828
VMScore
CVE-2008-0064
Stack-based buffer overflow in Pierre-emmanuel Gougelet (1) XnView 1.91 and 1.92, (2) NConvert 4.85, and (3) libgfl280.dll in GFL SDK 2.870 for Windows allows user-assisted remote malicious users to execute arbitrary code via a crafted Radiance RGBE (.hdr) file.
Pierreegougelet Gfl Sdk 2.870
Pierreegougelet Nconvert
Pierreegougelet Xnview
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »