CVE-2009-4001
Published Mar 15, 2010
Last updated 6 years ago
Overview
- Description
- Integer overflow in XnView before 1.97.2 might allow remote attackers to execute arbitrary code via a DICOM image with crafted dimensions, leading to a heap-based buffer overflow.
- Source
- PSIRT-CNA@flexerasoftware.com
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-189
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:xnview:xnview:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AE50603B-B8C1-451E-B9F2-F54208F553A3",
"versionEndIncluding": "1.97.1"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.0:a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1160EF2-C078-4C0A-999B-05B6D42FC65F"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26750A49-32A9-41C4-B4FC-4C53650D5B5D"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E93C259A-6715-468F-A1E1-CF954761EE84"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.03:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70F7DBD6-D249-4D64-B2FB-D486785F26E0"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.04:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "662F38C4-C400-435E-BCD4-0021AB6FA4FD"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2B4B6DE-A8D1-4B76-9873-F3FF386B6647"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.05:b:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F17BB19-F2EC-49EA-95FE-55126352D8CB"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.05:c:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BE7CE2C1-5D75-4760-891D-E53409F08A94"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.06:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "773D4D55-D241-41DD-A802-90F6B8037544"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.07:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F39E52FA-38AA-44CD-A027-9189BCD27E78"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.08:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9F5AD70E-6E6A-4D26-BF7B-FDBC169AE62A"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.09:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "874FB295-26DC-4BD4-84A7-D396D4B9F8BC"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34CE10DC-AC95-4A92-BF18-DE839FEB3EFC"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D5D72A3-82A9-44FF-AF40-AE4534DF13D3"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE4D2D41-0934-4F2E-9033-7866342A6148"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0DCC4DC4-FBB3-4B85-B7A1-0FDEE513DA01"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CA5158C-0F58-4C3D-8E36-61231E1D1F6B"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37B04085-8D2F-4DFD-B577-AFDCAA366335"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD62B251-470E-4D4F-93D2-E87453037CBC"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ACB7E1A0-63FD-4608-A070-D4D867671055"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.17:a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "28452A67-510F-4D6A-A96D-E51C0DD8B6E0"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B481D02-6F2F-4230-94BB-3EC257993D4E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.18.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4AB44AE2-8FCA-406B-AEE0-E724518CE74E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "41353F26-E155-41D5-9412-4E3FC28F1701"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55F1494F-8A2C-4362-832B-3B3887794F7F"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29E0879C-7580-49ED-93A5-7E072B3B6D88"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7ABD9EED-E230-455E-9052-23C08EE392D5"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D0FA50E-9965-4FA3-BB85-E63CD0824914"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "02C9ACEF-6B7C-42D5-8D68-04C7915B9039"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29EF6CFD-A098-41D6-9E8F-9842A9C16048"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.25:a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "102E7705-5533-4214-ACEE-B7C02CB454E0"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFB38B70-E59C-42CE-877C-D3322157E483"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.31:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A159A1F-85FB-4C5C-8D8E-399F30CDA115"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.32:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "67738CAF-186D-4831-AE04-E9E509BBC7EE"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.33:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52D407A4-8499-4DA2-99D7-0DE4C5F7F2BB"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.34:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6FECC88-9938-4AD0-889F-559C8F99B5BB"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4B324FA-DC14-44F8-8B63-0A2C71455726"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.36:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8B1C31A9-1239-4B22-AAA9-8294714EF677"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.37:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "98E67FA4-9AB4-4A2D-8B61-A90A09FA1484"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F988A618-07A7-438C-9FE2-EE2D1C9A1874"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.41:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "24A5B8B1-64FB-4B4D-825C-9F5049F61484"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.45:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "06D2393E-715C-4B26-8868-AB0A71F22CA3"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.46:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "679BF820-BF6B-4004-9F4D-7CE883456C62"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.50:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C0897791-B53F-4724-80F5-099DA55E2F7C"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.50.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "348D00F9-5BF2-4B16-9DC7-5165E92C8610"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.55:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6911582E-232F-44D8-82E6-104BD10F93E2"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.60:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CA514C3-D3BA-449E-A3E3-46917666F425"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.61:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B4D2CAD-8714-4CE4-969B-C157F33C5AA2"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.65:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "724E0679-4A89-4F7A-AF41-EA9C3A5C7C0E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.66:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4EBA50FC-6C50-42C5-8361-0165C7BE844B"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.67:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "38F201D3-52E9-4D1E-9CDF-7224DA766BA9"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.68:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66EB8513-6378-49E6-B7F7-52C5FEA40452"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.68.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FF190D40-A8FA-43BA-AE0E-4ED50ED2B14E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.70:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E27EB1D-5AE3-4002-829B-6AA0AE8D60F4"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.70.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2FB57494-C072-4C99-A0D2-207E2DEA76C1"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.70.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A5798EA-8ADC-4632-BBD4-811207EAFCA6"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.70.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE2BA7BA-EACB-41C5-9C0C-376678990766"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.74:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A195F27B-4B38-4882-B34C-D729CC8ACB99"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.80:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC73F60A-D89E-46FE-BA89-EAFE509489D3"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.80.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5CA0EDE4-DF5A-4152-B113-75E93910F556"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.80.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2427F9F0-76C3-4C53-A794-6C0E839A1BD9"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.80.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4400B8A-5D9B-4E68-830D-28D70969DDA9"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.82:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E21984E-6830-44B9-BFCD-5EFC9886272E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.82.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "16CBF0CE-9CBC-4C12-8061-B186543ABF0A"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.82.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B628ABE-2FB9-477E-859A-51AD323BF64D"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.82.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A66BCB0-D555-4627-BADA-806DA84E3167"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.90:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2346275-34F4-456E-8A9D-BB5DB24487D1"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.90.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ACA55EEC-4213-42B6-9C1A-FE9CB076DEBE"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.90.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0F3174A-3C30-4FBC-8478-21DA00661F4A"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "779BD454-9656-4B71-899E-FE0CC2413435"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37E3E487-26EC-4843-A80A-B02D6180FCB0"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "323F2315-A433-4278-B4B1-F089A2F3E31A"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C8E049E-4353-41A1-AB90-107D4CDB291A"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52354ABE-D603-4D6D-99AA-3EB3CA33DF96"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E2E41CB-D8AC-4D33-A81D-A66C3CFBE644"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.91.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B014AC9-6A9B-49AE-806F-DF3683169DA1"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.92:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26269B37-EE6D-4829-8100-656AFC6D706D"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.92.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "01370703-08C0-49C3-A7F6-5C223FB146C0"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.93:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "222D7302-E49E-4BD8-9E4D-872AA3103A69"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.93.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F10DEFA8-377A-434D-A353-4C428A9A13F8"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.93.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "481D1D7F-5A8A-4A5D-A499-A733ACA00CD4"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.93.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D686020-C181-4F84-8418-C90ABE387D7C"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.93.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A9BF2F4-8821-48E8-8421-AF0AA761EF55"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.93.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1FB56C26-5E49-47BB-89DE-C501400329FC"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.94:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6AE38635-D538-4D61-83D9-61D7D3A89C27"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.94.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC83C981-C43B-4B8E-A912-2F4729F77B97"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.94.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7DD418E1-79FA-4942-AB0D-9B45C1368890"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.95:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C0AE1B44-0384-4043-9892-FE57E530BE08"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.95.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BD61FD5-A98B-4793-B7B6-D25307B89F5A"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.95.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48950A60-115D-4685-B3D2-6AE54AE2737E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.95.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C64D9A65-BE9C-4295-9DAD-B3DB9E915E71"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.95.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D4996E2-0085-44FE-8C29-A4734A1D61FC"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.96:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C9B7628-C72F-44BD-92BB-2E85DEAA003E"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.96.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E05C35C3-3BBA-43FD-AE8D-C132AB6330F6"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.96.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FB5B1D98-83E7-41C3-84E2-D0552B37644F"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.96.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19D77398-388F-420C-94D1-C1EAC1635C02"
},
{
"criteria": "cpe:2.3:a:xnview:xnview:1.97:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5ACCCCC3-0331-4ABA-9ED8-9C1E1381FE1A"
}
],
"operator": "OR"
}
]
}
]