CVE-2012-0276

Name of the Vulnerable Software and Affected Versions XnView versions prior to 1.99

Description The issue is related to multiple heap-based buffer overflows that can be triggered by remote attackers using specific types of compressed TIFF images. This can lead to a denial of service, causing the application to crash, and potentially allow the execution of arbitrary code. The vulnerability can be exploited through SGI32LogLum compressed TIFF images, including those with the PhotometricInterpretation encoding set to LogL.

Recommendations For versions prior to 1.99, update to version 1.99 or later to resolve the issue.