| CVE-2017-8766 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) allows remote attackers to execute code via a crafted .mov file, because of a "User Mode Write AV near NULL" issue. |
| CVE-2017-8370 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) with FPX Plugin 4.45 allows remote attackers to execute arbitrary code or cause a denial of service (Heap Corruption and application crash) in processing a FlashPix (.F… |
| CVE-2017-8369 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) has a "Data from Faulting Address controls Branch Selection starting at USER32!wvsprintfA+0x00000000000002f3" issue, which might allow attackers to execute arbitrary co… |
| CVE-2017-10926 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to a "Read Access Violation s… |
| CVE-2017-10925 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Addres… |
| CVE-2017-10924 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView 4.44 (32bit) with FPX Plugin 4.47 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!FPX_GetSc… |
| CVE-2017-10735 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Br… |
| CVE-2017-10734 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to an "Invalid Handle starting at wow64!Wo… |
| CVE-2017-10733 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Br… |
| CVE-2017-10732 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Br… |
| CVE-2017-10731 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at FORMATS!GetPlugInInfo+0x00… |
| CVE-2017-10730 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at FORMATS!GetPlugInInfo+0x00… |
| CVE-2017-10729 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!RtlpWaitOnC… |
| CVE-2017-2813 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
An exploitable integer overflow vulnerability exists in the JPEG 2000 parser functionality of IrfanView 4.44. A specially crafted jpeg2000 image can cause an integer overflow leading to wrong memory … |
| CVE-2017-7721 |
high |
7.8 |
7.8 |
|
|
irfanview |
9y ago |
IrfanView version 4.44 (32bit) with FPX Plugin before 4.45 has an Access Violation and crash in processing a FlashPix (.FPX) file. |
| CVE-2013-5351 |
high |
— |
7.5 |
|
|
irfanview |
13y ago |
Heap-based buffer overflow in IrfanView before 4.37 allows remote attackers to execute arbitrary code via the LZW code stream in a GIF file. |
| CVE-2013-6932 |
high |
— |
7.6 |
|
|
irfanview |
13y ago |
Buffer overflow in IrfanView before 4.37, when a multibyte-character directory name is used, allows user-assisted remote attackers to execute arbitrary code via a crafted file that is incorrectly han… |
| CVE-2012-5904 |
medium |
— |
6.8 |
|
|
irfanview |
14y ago |
Heap-based buffer overflow in IrfanView before 4.33 allows remote attackers to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image. |
| CVE-2012-0025 |
medium |
— |
7.8 |
EXP |
|
irfanview |
14y ago |
Double free vulnerability in the Free_All_Memory function in jpeg/dectile.c in libfpx before 1.3.1-1, as used in the FlashPix PlugIn 4.2.2.0 for IrfanView, allows remote attackers to cause a denial o… |
| CVE-2011-5233 |
medium |
— |
5.3 |
EXP |
|
irfanview |
14y ago |
Heap-based buffer overflow in IrfanView before 4.32 allows remote attackers to execute arbitrary code via crafted "Rows Per Strip" and "Samples Per Pixel" values in a TIFF image file. |
| CVE-2012-3585 |
critical |
— |
10.0 |
EXP |
|
irfanview |
14y ago |
Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS f… |
| CVE-2012-0278 |
critical |
— |
10.0 |
EXP |
|
irfanview |
14y ago |
Heap-based buffer overflow in the FlashPix PlugIn before 4.3.4.0 for IrfanView might allow remote attackers to execute arbitrary code via a .fpx file containing a crafted FlashPix image that is not p… |
| CVE-2012-0897 |
medium |
— |
7.8 |
EXP |
|
irfanview |
15y ago |
Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QC… |
| CVE-2010-1510 |
medium |
— |
5.0 |
|
|
irfanview |
16y ago |
Heap-based buffer overflow in IrfanView before 4.27 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PSD image with RLE compre… |
| CVE-2010-1509 |
medium |
— |
5.0 |
|
|
irfanview |
16y ago |
IrfanView before 4.27 does not properly handle an unspecified integer variable during processing of PSD images, which allows remote attackers to cause a denial of service (application crash) or possi… |
