CVE-2012-0276

XnView < 1.99 - Heap-Based Buffer Overflow via SGI32LogLum Compressed TIFF Image

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-0276. PoCs published by Francis Provencher.

AI-analyzed exploit summary This exploit targets a heap-based buffer overflow in XnView when processing maliciously crafted TIFF images with SGI32LogLum compression. The provided TIFF file triggers the vulnerability, leading to potential remote code execution.

Description

Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the PhotometricInterpretation encoding set to LogL.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Francis Provencher · textdoswindows

https://www.exploit-db.com/exploits/19338

View Code ZIP pw:eip

This exploit targets a heap-based buffer overflow in XnView when processing maliciously crafted TIFF images with SGI32LogLum compression. The provided TIFF file triggers the vulnerability, leading to potential remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: XnView 1.98.8

No auth needed

Prerequisites: Victim must open the malicious TIFF file in XnView

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP VERIFIED

by Francis Provencher · textdoswindows

https://www.exploit-db.com/exploits/19337

View Code ZIP pw:eip

This is a writeup describing a heap-based buffer overflow vulnerability in XnView when processing malformed TIFF images with SGI32LogLum compression and LogL PhotometricInterpretation. The exploit details are provided, but no actual exploit code is included in the text.