CVE Vulnerabilities

CVE-2009-4001

Published: Mar 15, 2010 | Modified: Oct 10, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Xnview Xnview * 1.97.1 (including)
Xnview Xnview 1.0-a (including) 1.0-a (including)
Xnview Xnview 1.01 (including) 1.01 (including)
Xnview Xnview 1.02 (including) 1.02 (including)
Xnview Xnview 1.03 (including) 1.03 (including)
Xnview Xnview 1.04 (including) 1.04 (including)
Xnview Xnview 1.05 (including) 1.05 (including)
Xnview Xnview 1.05-b (including) 1.05-b (including)
Xnview Xnview 1.05-c (including) 1.05-c (including)
Xnview Xnview 1.06 (including) 1.06 (including)
Xnview Xnview 1.07 (including) 1.07 (including)
Xnview Xnview 1.08 (including) 1.08 (including)
Xnview Xnview 1.09 (including) 1.09 (including)
Xnview Xnview 1.10 (including) 1.10 (including)
Xnview Xnview 1.11 (including) 1.11 (including)
Xnview Xnview 1.12 (including) 1.12 (including)
Xnview Xnview 1.13 (including) 1.13 (including)
Xnview Xnview 1.14 (including) 1.14 (including)
Xnview Xnview 1.15 (including) 1.15 (including)
Xnview Xnview 1.16 (including) 1.16 (including)
Xnview Xnview 1.17 (including) 1.17 (including)
Xnview Xnview 1.17-a (including) 1.17-a (including)
Xnview Xnview 1.18 (including) 1.18 (including)
Xnview Xnview 1.18.1 (including) 1.18.1 (including)
Xnview Xnview 1.19 (including) 1.19 (including)
Xnview Xnview 1.20 (including) 1.20 (including)
Xnview Xnview 1.21 (including) 1.21 (including)
Xnview Xnview 1.22 (including) 1.22 (including)
Xnview Xnview 1.23 (including) 1.23 (including)
Xnview Xnview 1.24 (including) 1.24 (including)
Xnview Xnview 1.25 (including) 1.25 (including)
Xnview Xnview 1.25-a (including) 1.25-a (including)
Xnview Xnview 1.30 (including) 1.30 (including)
Xnview Xnview 1.31 (including) 1.31 (including)
Xnview Xnview 1.32 (including) 1.32 (including)
Xnview Xnview 1.33 (including) 1.33 (including)
Xnview Xnview 1.34 (including) 1.34 (including)
Xnview Xnview 1.35 (including) 1.35 (including)
Xnview Xnview 1.36 (including) 1.36 (including)
Xnview Xnview 1.37 (including) 1.37 (including)
Xnview Xnview 1.40 (including) 1.40 (including)
Xnview Xnview 1.41 (including) 1.41 (including)
Xnview Xnview 1.45 (including) 1.45 (including)
Xnview Xnview 1.46 (including) 1.46 (including)
Xnview Xnview 1.50 (including) 1.50 (including)
Xnview Xnview 1.50.1 (including) 1.50.1 (including)
Xnview Xnview 1.55 (including) 1.55 (including)
Xnview Xnview 1.60 (including) 1.60 (including)
Xnview Xnview 1.61 (including) 1.61 (including)
Xnview Xnview 1.65 (including) 1.65 (including)
Xnview Xnview 1.66 (including) 1.66 (including)
Xnview Xnview 1.67 (including) 1.67 (including)
Xnview Xnview 1.68 (including) 1.68 (including)
Xnview Xnview 1.68.1 (including) 1.68.1 (including)
Xnview Xnview 1.70 (including) 1.70 (including)
Xnview Xnview 1.70.2 (including) 1.70.2 (including)
Xnview Xnview 1.70.3 (including) 1.70.3 (including)
Xnview Xnview 1.70.4 (including) 1.70.4 (including)
Xnview Xnview 1.74 (including) 1.74 (including)
Xnview Xnview 1.80 (including) 1.80 (including)
Xnview Xnview 1.80.1 (including) 1.80.1 (including)
Xnview Xnview 1.80.2 (including) 1.80.2 (including)
Xnview Xnview 1.80.3 (including) 1.80.3 (including)
Xnview Xnview 1.82 (including) 1.82 (including)
Xnview Xnview 1.82.2 (including) 1.82.2 (including)
Xnview Xnview 1.82.3 (including) 1.82.3 (including)
Xnview Xnview 1.82.4 (including) 1.82.4 (including)
Xnview Xnview 1.90 (including) 1.90 (including)
Xnview Xnview 1.90.1 (including) 1.90.1 (including)
Xnview Xnview 1.90.3 (including) 1.90.3 (including)
Xnview Xnview 1.91 (including) 1.91 (including)
Xnview Xnview 1.91.1 (including) 1.91.1 (including)
Xnview Xnview 1.91.2 (including) 1.91.2 (including)
Xnview Xnview 1.91.3 (including) 1.91.3 (including)
Xnview Xnview 1.91.4 (including) 1.91.4 (including)
Xnview Xnview 1.91.5 (including) 1.91.5 (including)
Xnview Xnview 1.91.6 (including) 1.91.6 (including)
Xnview Xnview 1.92 (including) 1.92 (including)
Xnview Xnview 1.92.1 (including) 1.92.1 (including)
Xnview Xnview 1.93 (including) 1.93 (including)
Xnview Xnview 1.93.1 (including) 1.93.1 (including)
Xnview Xnview 1.93.2 (including) 1.93.2 (including)
Xnview Xnview 1.93.3 (including) 1.93.3 (including)
Xnview Xnview 1.93.4 (including) 1.93.4 (including)
Xnview Xnview 1.93.6 (including) 1.93.6 (including)
Xnview Xnview 1.94 (including) 1.94 (including)
Xnview Xnview 1.94.1 (including) 1.94.1 (including)
Xnview Xnview 1.94.2 (including) 1.94.2 (including)
Xnview Xnview 1.95 (including) 1.95 (including)
Xnview Xnview 1.95.1 (including) 1.95.1 (including)
Xnview Xnview 1.95.2 (including) 1.95.2 (including)
Xnview Xnview 1.95.3 (including) 1.95.3 (including)
Xnview Xnview 1.95.4 (including) 1.95.4 (including)
Xnview Xnview 1.96 (including) 1.96 (including)
Xnview Xnview 1.96.1 (including) 1.96.1 (including)
Xnview Xnview 1.96.2 (including) 1.96.2 (including)
Xnview Xnview 1.96.5 (including) 1.96.5 (including)
Xnview Xnview 1.97 (including) 1.97 (including)

References