JPEGView Buffer Overflow Vulnerability

Last Update Date: 22 Nov 2013 10:33 Release Date: 22 Nov 2013 3283 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Graphics & Design

TYPE: Graphics & Design

A vulnerability has been identified JPEGView, which can be exploited by malicious people to potentially compromise a user's system.

 

The vulnerability is caused due to a sign extension error within the JPEGView.exe module and can be exploited to cause a buffer overflow via a specially crafted "Image Top Position" field.

 

Successful exploitation may allow execution of arbitrary code, but requires tricking a user to open a specially crafted GIF file or to have the .gif extension to be associated with the application via the preferences (not associated by default).

Impact

  • Remote Code Execution

System / Technologies affected

  • version 1.0.29 and prior versions may also be affected.

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 1.0.30.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Drupal Multiple Vulnerabilities

22 Nov 2013 3286 Views

Next

Ruby Floating Point Parsing Buffer Overflow Vulnerability

25 Nov 2013 3211 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY