Intrusion Prevention

XnView.TAAC.Buffer.Overflow

Description

This indicates an attempt to exploit a buffer-overflow vulnerability in XnView.
The vulnerability is caused by an error when the vulnerable software handles a malicious "format" string. It allows a remote attacker to execute arbitrary code via sending a TAAC file.

Affected Products

XnView 1.x

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

XnView for Windows:
Update to version 1.94.

CVE References

CVE-2008-2427