Vulnerabilities > CVE-2019-9136 - Out-of-bounds Write vulnerability in Datools Daviewindy
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed JPEG2000 format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |