CVE-2009-4001

Description

Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow.

Software From Fixed in
xnview / xnview - 1.97.1.x
xnview / xnview 1.0-a 1.0-a.x
xnview / xnview 1.01 1.01.x
xnview / xnview 1.02 1.02.x
xnview / xnview 1.03 1.03.x
xnview / xnview 1.04 1.04.x
xnview / xnview 1.05 1.05.x
xnview / xnview 1.05-b 1.05-b.x
xnview / xnview 1.05-c 1.05-c.x
xnview / xnview 1.06 1.06.x
xnview / xnview 1.07 1.07.x
xnview / xnview 1.08 1.08.x
xnview / xnview 1.09 1.09.x
xnview / xnview 1.10 1.10.x
xnview / xnview 1.11 1.11.x
xnview / xnview 1.12 1.12.x
xnview / xnview 1.13 1.13.x
xnview / xnview 1.14 1.14.x
xnview / xnview 1.15 1.15.x
xnview / xnview 1.16 1.16.x
xnview / xnview 1.17 1.17.x
xnview / xnview 1.17-a 1.17-a.x
xnview / xnview 1.18 1.18.x
xnview / xnview 1.18.1 1.18.1.x
xnview / xnview 1.19 1.19.x
xnview / xnview 1.20 1.20.x
xnview / xnview 1.21 1.21.x
xnview / xnview 1.22 1.22.x
xnview / xnview 1.23 1.23.x
xnview / xnview 1.24 1.24.x
xnview / xnview 1.25 1.25.x
xnview / xnview 1.25-a 1.25-a.x
xnview / xnview 1.30 1.30.x
xnview / xnview 1.31 1.31.x
xnview / xnview 1.32 1.32.x
xnview / xnview 1.33 1.33.x
xnview / xnview 1.34 1.34.x
xnview / xnview 1.35 1.35.x
xnview / xnview 1.36 1.36.x
xnview / xnview 1.37 1.37.x
xnview / xnview 1.40 1.40.x
xnview / xnview 1.41 1.41.x
xnview / xnview 1.45 1.45.x
xnview / xnview 1.46 1.46.x
xnview / xnview 1.50 1.50.x
xnview / xnview 1.50.1 1.50.1.x
xnview / xnview 1.55 1.55.x
xnview / xnview 1.60 1.60.x
xnview / xnview 1.61 1.61.x
xnview / xnview 1.65 1.65.x
xnview / xnview 1.66 1.66.x
xnview / xnview 1.67 1.67.x
xnview / xnview 1.68 1.68.x
xnview / xnview 1.68.1 1.68.1.x
xnview / xnview 1.70 1.70.x
xnview / xnview 1.70.2 1.70.2.x
xnview / xnview 1.70.3 1.70.3.x
xnview / xnview 1.70.4 1.70.4.x
xnview / xnview 1.74 1.74.x
xnview / xnview 1.80 1.80.x
xnview / xnview 1.80.1 1.80.1.x
xnview / xnview 1.80.2 1.80.2.x
xnview / xnview 1.80.3 1.80.3.x
xnview / xnview 1.82 1.82.x
xnview / xnview 1.82.2 1.82.2.x
xnview / xnview 1.82.3 1.82.3.x
xnview / xnview 1.82.4 1.82.4.x
xnview / xnview 1.90 1.90.x
xnview / xnview 1.90.1 1.90.1.x
xnview / xnview 1.90.3 1.90.3.x
xnview / xnview 1.91 1.91.x
xnview / xnview 1.91.1 1.91.1.x
xnview / xnview 1.91.2 1.91.2.x
xnview / xnview 1.91.3 1.91.3.x
xnview / xnview 1.91.4 1.91.4.x
xnview / xnview 1.91.5 1.91.5.x
xnview / xnview 1.91.6 1.91.6.x
xnview / xnview 1.92 1.92.x
xnview / xnview 1.92.1 1.92.1.x
xnview / xnview 1.93 1.93.x
xnview / xnview 1.93.1 1.93.1.x
xnview / xnview 1.93.2 1.93.2.x
xnview / xnview 1.93.3 1.93.3.x
xnview / xnview 1.93.4 1.93.4.x
xnview / xnview 1.93.6 1.93.6.x
xnview / xnview 1.94 1.94.x
xnview / xnview 1.94.1 1.94.1.x
xnview / xnview 1.94.2 1.94.2.x
xnview / xnview 1.95 1.95.x
xnview / xnview 1.95.1 1.95.1.x
xnview / xnview 1.95.2 1.95.2.x
xnview / xnview 1.95.3 1.95.3.x
xnview / xnview 1.95.4 1.95.4.x
xnview / xnview 1.96 1.96.x
xnview / xnview 1.96.1 1.96.1.x
xnview / xnview 1.96.2 1.96.2.x
xnview / xnview 1.96.5 1.96.5.x
xnview / xnview 1.97 1.97.x