• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ZGV And XZGV Image Viewer Multiple Remote Integer Overflow Vulnerabilities

zgv is reportedly affected by multiple remote integer overflow vulnerabilities. These issues are due to a failure of the application to perform adequate sanity checking on image values prior to copying image data into process buffers.

An attacker may leverage these issues to execute arbitrary code on an affected computer with the privileges of the user running the vulnerable application.