Code injection

2017-07-0520:29:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.2%

JSON

XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to “Data from Faulting Address controls Code Flow starting at Xfpx!gffGetFormatInfo+0x000000000002e388.”

CPENameOperatorVersion
xnvieweq2.40

CPE	Name	Operator	Version
	xnview	eq	2.40

References

github.com/wlinzi/security_advisories/tree/master/CVE-2017-9899