CVE-2017-10738CVE-2017-10738

Affected configuration(s):

cpe:/a:xnview:xnview:2.40

Date published: 2017-07-05T16:29:00.937-04:00

Date last modified: 2017-07-10T10:34:12.083-04:00

CVSS Score: 4.6

Principal attack vector: LOCAL

Complexity:  LOW

Reference URL: https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10738

Summary: XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a “Data Execution Prevention Violation starting at Unknown Symbol @ 0x000000002f32332f called from KERNELBASE!CompareStringW+0x0000000000000082.”

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.