XnView FPX/ECW/RAS Image File Processing Vulnerability

Release date:
Updated on:

Affected Systems:
XnView 1.x
Description:
--------------------------------------------------------------------------------
XnView is a browser Image Viewer that supports multiple graphic formats.

Versions earlier than XnView 1.98.8 have multiple security vulnerabilities. After successful exploitation, attackers can control the user system.

1) when processing FlashPix images, the Xfpx. dll module has a boundary error. Through a specially crafted FPX File, attackers can exploit this vulnerability to cause heap buffer overflow.

2) When extracting the ECW image, the NCSEcw. dll module has a boundary error. Through a specially crafted ECW file, attackers can exploit this vulnerability to cause heap buffer overflow.

3) There is an integer truncation error when processing the RAS image. Attackers can exploit this vulnerability to cause heap buffer overflow through the specially crafted "Depth" value in the specially crafted RAS file.

<* Source: Francis Provencher

Link: http://secunia.com/advisories/49091/
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

XnView
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Http://www.xnview.com/