Login Sign Up

CVE-2023-43251

7.8 HIGH
Remote Code Execution Denial of Service Buffer Overflow

📋 TL;DR

CVE-2023-43251 is a buffer overflow vulnerability in XNSoft Nconvert 7.136 where a crafted image file can corrupt the exception handler chain. Attackers can exploit this to cause denial of service or potentially execute arbitrary code. Users of Nconvert 7.136 who process untrusted image files are affected.

💻 Affected Systems

Products:
  • XNSoft Nconvert
Versions: 7.136
Operating Systems: Windows, Linux, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 7.136 are vulnerable when processing image files.

📦 What is this software?

Nconvert by Xnview

View all CVEs affecting Nconvert →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the same privileges as the Nconvert process, potentially leading to full system compromise.

🟠

Likely Case

Denial of service through application crashes when processing malicious image files.

🟢

If Mitigated

Limited impact if Nconvert runs with minimal privileges and doesn't process untrusted files.

🌐 Internet-Facing: MEDIUM - Exploitation requires processing attacker-controlled files, which could occur through web uploads or email attachments.
🏢 Internal Only: LOW - Requires local file access or internal file sharing to trigger the vulnerability.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Proof-of-concept exploit code is publicly available on GitHub, making exploitation straightforward for attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: Not available

Restart Required: No

Instructions:

No official patch available. Upgrade to a newer version if available, or apply workarounds.

🔧 Temporary Workarounds

Restrict file processing

all

Configure Nconvert to only process trusted image files from known sources.

Run with reduced privileges

all

Execute Nconvert with minimal system permissions to limit potential damage from exploitation.

🧯 If You Can't Patch

  • Isolate Nconvert to a dedicated system with no sensitive data or network access
  • Implement strict input validation and sandboxing for all image processing operations

🔍 How to Verify

Check if Vulnerable:

Check Nconvert version using 'nconvert -version' or 'nconvert -help' and verify if it's 7.136.

Check Version:

nconvert -version

Verify Fix Applied:

Verify version is no longer 7.136 after upgrading to a newer release.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes with access violation errors
  • Unexpected termination of Nconvert processes

Network Indicators:

  • Unusual file uploads to systems running Nconvert
  • Network traffic spikes preceding application crashes

SIEM Query:

EventID=1000 OR EventID=1001 AND ProcessName='nconvert.exe' OR Source='nconvert'

📊 Metadata

CVE ID: CVE-2023-43251
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-755
Published: October 19, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-43251, you might also want to check these:

CVE-2022-48328 9.8

This vulnerability in MISP (Malware Information Sharing Platform) allows SQL injection through misha...

Same vulnerability type (CWE-755)
CVE-2021-43272 9.8

This vulnerability allows remote code execution through malicious DWF files in Open Design Alliance ...

Same vulnerability type (CWE-755)
CVE-2022-23121 9.8

CVE-2022-23121 is a critical remote code execution vulnerability in Netatalk's AppleDouble parsing f...

Same vulnerability type (CWE-755)