CVE-2013-2577

Buffer overflow in XnView before 2.04 allows remote attackers to execute arbitrary code via a crafted PCT file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
xnviewxnview
𝑥
≤ 2.03
xnviewxnview
1.0:a
xnviewxnview
1.01
xnviewxnview
1.02
xnviewxnview
1.03
xnviewxnview
1.04
xnviewxnview
1.05
xnviewxnview
1.05:b
xnviewxnview
1.05:c
xnviewxnview
1.06
xnviewxnview
1.07
xnviewxnview
1.08
xnviewxnview
1.09
xnviewxnview
1.10
xnviewxnview
1.11
xnviewxnview
1.12
xnviewxnview
1.13
xnviewxnview
1.14
xnviewxnview
1.15
xnviewxnview
1.16
xnviewxnview
1.17
xnviewxnview
1.17:a
xnviewxnview
1.18
xnviewxnview
1.18.1
xnviewxnview
1.19
xnviewxnview
1.20
xnviewxnview
1.21
xnviewxnview
1.22
xnviewxnview
1.23
xnviewxnview
1.24
xnviewxnview
1.25
xnviewxnview
1.25:a
xnviewxnview
1.30
xnviewxnview
1.31
xnviewxnview
1.32
xnviewxnview
1.33
xnviewxnview
1.34
xnviewxnview
1.35
xnviewxnview
1.36
xnviewxnview
1.37
xnviewxnview
1.40
xnviewxnview
1.41
xnviewxnview
1.45
xnviewxnview
1.46
xnviewxnview
1.50
xnviewxnview
1.50.1
xnviewxnview
1.55
xnviewxnview
1.60
xnviewxnview
1.61
xnviewxnview
1.65
xnviewxnview
1.66
xnviewxnview
1.67
xnviewxnview
1.68
xnviewxnview
1.68.1
xnviewxnview
1.70
xnviewxnview
1.70.2
xnviewxnview
1.70.3
xnviewxnview
1.70.4
xnviewxnview
1.74
xnviewxnview
1.80
xnviewxnview
1.80.1
xnviewxnview
1.80.2
xnviewxnview
1.80.3
xnviewxnview
1.82
xnviewxnview
1.82.2
xnviewxnview
1.82.3
xnviewxnview
1.82.4
xnviewxnview
1.90
xnviewxnview
1.90.1
xnviewxnview
1.90.3
xnviewxnview
1.91
xnviewxnview
1.91.1
xnviewxnview
1.91.2
xnviewxnview
1.91.3
xnviewxnview
1.91.4
xnviewxnview
1.91.5
xnviewxnview
1.91.6
xnviewxnview
1.92
xnviewxnview
1.92.1
xnviewxnview
1.93
xnviewxnview
1.93.1
xnviewxnview
1.93.2
xnviewxnview
1.93.3
xnviewxnview
1.93.4
xnviewxnview
1.93.6
xnviewxnview
1.94
xnviewxnview
1.94.1
xnviewxnview
1.94.2
xnviewxnview
1.95
xnviewxnview
1.95.1
xnviewxnview
1.95.2
xnviewxnview
1.95.3
xnviewxnview
1.95.4
xnviewxnview
1.96
xnviewxnview
1.96.1
xnviewxnview
1.96.2
xnviewxnview
1.96.5
xnviewxnview
1.97
xnviewxnview
1.97.1
xnviewxnview
1.97.2
xnviewxnview
1.97.3
xnviewxnview
1.97.4
xnviewxnview
1.97.5
xnviewxnview
1.97.6
xnviewxnview
1.97.7
xnviewxnview
1.97.8
xnviewxnview
1.98
xnviewxnview
1.98.1
xnviewxnview
1.98.2
xnviewxnview
1.98.3
xnviewxnview
1.98.4
xnviewxnview
1.98.5
xnviewxnview
1.98.6
xnviewxnview
1.98.7
xnviewxnview
1.98.8
xnviewxnview
1.99
xnviewxnview
1.99.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2013-07/0153.html
http://newsgroup.xnview.com/viewtopic.php?f=35&t=28400
http://osvdb.org/95580
http://secunia.com/advisories/54174
http://www.coresecurity.com/advisories/xnview-buffer-overflow-vulnerability
http://www.exploit-db.com/exploits/27049
http://www.securitytracker.com/id/1028817
https://exchange.xforce.ibmcloud.com/vulnerabilities/85919
http://archives.neohapsis.com/archives/bugtraq/2013-07/0153.html
http://newsgroup.xnview.com/viewtopic.php?f=35&t=28400
http://osvdb.org/95580
http://secunia.com/advisories/54174
http://www.coresecurity.com/advisories/xnview-buffer-overflow-vulnerability
http://www.exploit-db.com/exploits/27049
http://www.securitytracker.com/id/1028817
https://exchange.xforce.ibmcloud.com/vulnerabilities/85919