Signature Detail

Short Name	HTTP:XNVIEW-MBM-FILE-BO1
Severity	Medium
Recommended	No
Category	HTTP
Keywords	XnView mbm File Parsing Buffer Overflow1
Release Date	2015/10/07
Update Number	2543
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: XnView mbm File Parsing Buffer Overflow1

This signature detects attempts to exploit a known vulnerability in XnView. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the targeted application. Failed exploit attempts could result in a denial of service condition.

References

URL: http://www.securelist.com/en/analysis/204792247/miniFlame_aka_SPE_Elvis_and_his_friends
URL: http://vrt-blog.snort.org/2012/12/triggering-miniflames-c-communication.html

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: XnView mbm File Parsing Buffer Overflow1

References