vulnerability

XnSoft XnView: CVE-2013-3937: XnView BMP Image Processing Heap Based Buffer Overflow Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	2020-01-02	2020-01-22	2020-01-22

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

2020-01-02

Added

2020-01-22

Modified

2020-01-22

Description

Heap-based buffer overflow in xnview.exe in XnView before 2.13 allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file.

Solution

xnsoft-xnview-upgrade-2_13

References

CVE-2013-3937
https://attackerkb.com/topics/CVE-2013-3937
URL-http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today