Denial of Service and Possible Stack Corruption in XnView Classic for Windows Version 2.40 via Crafted .fpx File

Denial of Service and Possible Stack Corruption in XnView Classic for Windows Version 2.40 via Crafted .fpx File

CVE-2017-9907 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

XnView Classic for Windows Version 2.40 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Possible Stack Corruption starting at Xfpx!gffGetFormatInfo+0x0000000000022e1f."

Learn more about our Web Application Penetration Testing UK.