CVE-2012-0685

Loading...

General

Score:9.3/10.0
Severity:High
Category:Numeric Error

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Published on 09/05/12 - Updated on 10/05/12

Description

Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684.

Category: Numeric Error

CWE-189 (Numeric Errors)
Weaknesses in this category are related to improper calculation or conversion of numbers.

Security Notices

US National Vulnerability DatabaseCVE-2012-0685

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
xnviewxnview

Share this vulnerability with:

Twitter Facebook LinkedIn Mail