Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2013-3939
PUBLISHED
More InfoOfficial Page
Assigner-flexera
Assigner Org ID-44d08088-2bea-4760-83a6-1e9be26b15ab
View Known Exploited Vulnerability (KEV) details
Published At-02 Jan, 2020 | 19:11
Updated At-06 Aug, 2024 | 16:30
Rejected At-
▼CVE Numbering Authority (CNA)

xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-based buffer overflow.

Affected Products
Vendor
XnView (XnSoft)XnView
Product
XnView
Versions
Affected
  • before 2.13
Problem Types
TypeCWE IDDescription
textN/AOther
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://secunia.com/advisories/52101
third-party-advisory
x_refsource_SECUNIA
http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://secunia.com/advisories/52101
third-party-advisory
x_refsource_SECUNIA
x_transferred
http://newsgroup.xnview.com/viewtopic.php?f=35&t=29087
x_refsource_CONFIRM
x_transferred
Details not found