CVE-2008-1461

EPSS 11.3%

Buffer overflow in XnView 1.92.1 allows user-assisted remote attackers to execute arbitrary code via a long filename argument on the command line. NOTE: it is unclear whether there are common handler configurations in which this argument is controlled by an attacker.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/31405unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://securityreason.com/securityalert/3761 https://exchange.xforce.ibmcloud.com/vulnerabilities/41245 http://www.click-internet.fr/index.php?cki=News&news=9 http://www.securityfocus.com/archive/1/489658/100/0/threaded http://www.securityfocus.com/bid/28259