Denial of Service and Potential Code Execution in XnView Classic for Windows Version 2.43 via Crafted .dwg File

Denial of Service and Potential Code Execution in XnView Classic for Windows Version 2.43 via Crafted .dwg File

CVE-2017-15783 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

XnView Classic for Windows Version 2.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to "Data from Faulting Address controls Branch Selection starting at CADImage+0x0000000000285ce1."

Learn more about our Web Application Penetration Testing UK.