CVE-2008-1461

XnView 1.92.1 - Buffer Overflow via Long Filename Argument

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1461. PoCs published by Sylvain THUAL.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in XnView 1.92.1 by passing a malicious filename as a command-line argument. It uses a shellcode to execute arbitrary code (calc.exe) and leverages a return address from user32.dll to redirect execution.

Description

Buffer overflow in XnView 1.92.1 allows user-assisted remote attackers to execute arbitrary code via a long filename argument on the command line. NOTE: it is unclear whether there are common handler configurations in which this argument is controlled by an attacker.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sylvain THUAL · cremotewindows

https://www.exploit-db.com/exploits/31405

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in XnView 1.92.1 by passing a malicious filename as a command-line argument. It uses a shellcode to execute arbitrary code (calc.exe) and leverages a return address from user32.dll to redirect execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: XnView 1.92.1

No auth needed

Prerequisites: XnView configured as a handler for other applications · Ability to pass malicious filenames as command-line arguments

MITRE ATT&CK