CVE-2017-8282

N/A

Description

XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mov file that is mishandled during the opening of a directory in "Browser" mode, because of a "User Mode Write AV near NULL" in XnView.exe.

CVE Details

CVSS v3.1 ScoreN/A

Published7/5/2017

Last Modified4/20/2025

Sourcenvd

Honeypot Sightings0

Affected Products

xnview:xnview

Weaknesses (CWE)

CWE-119

References

https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-8282(cve@mitre.org)

https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-8282(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.