Search found 2 matches
- Sun Jan 14, 2024 1:22 pm
- Forum: NConvert
- Topic: NConvert is vulnerable to Heap-based Buffer Overflow
- Replies: 2
- Views: 3408
Re: NConvert is vulnerable to Heap-based Buffer Overflow
Thank you, I sent the email about two days ago. If you can't find it, i'll send it again
- Sun Jan 14, 2024 1:10 pm
- Forum: NConvert
- Topic: NConvert is vulnerable to Heap-based Buffer Overflow
- Replies: 2
- Views: 3408
NConvert is vulnerable to Heap-based Buffer Overflow
NConvert was discovered that contains Heap-based Buffer Overflow vulnerability via converting crafted .xwd file to any other format.
It seems version 7.163 for windows x86& x64, 7.155 for Linux x64, 7.39 for Linux x86 are affected.
Crash can be reproduced by
nconvert.exe -out pzl -in xwd -o .\tmp ...
It seems version 7.163 for windows x86& x64, 7.155 for Linux x64, 7.39 for Linux x86 are affected.
Crash can be reproduced by
nconvert.exe -out pzl -in xwd -o .\tmp ...