| CVE-2012-5904 |
medium |
— |
6.8 |
|
|
irfanview |
14y ago |
Heap-based buffer overflow in IrfanView before 4.33 allows remote attackers to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image. |
| CVE-2012-0025 |
medium |
— |
7.8 |
EXP |
|
irfanview |
14y ago |
Double free vulnerability in the Free_All_Memory function in jpeg/dectile.c in libfpx before 1.3.1-1, as used in the FlashPix PlugIn 4.2.2.0 for IrfanView, allows remote attackers to cause a denial o… |
| CVE-2011-5233 |
medium |
— |
5.3 |
EXP |
|
irfanview |
14y ago |
Heap-based buffer overflow in IrfanView before 4.32 allows remote attackers to execute arbitrary code via crafted "Rows Per Strip" and "Samples Per Pixel" values in a TIFF image file. |
| CVE-2012-3585 |
critical |
— |
10.0 |
EXP |
|
irfanview |
14y ago |
Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS f… |
| CVE-2012-0278 |
critical |
— |
10.0 |
EXP |
|
irfanview |
14y ago |
Heap-based buffer overflow in the FlashPix PlugIn before 4.3.4.0 for IrfanView might allow remote attackers to execute arbitrary code via a .fpx file containing a crafted FlashPix image that is not p… |
| CVE-2012-0897 |
medium |
— |
7.8 |
EXP |
|
irfanview |
15y ago |
Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QC… |
| CVE-2010-1510 |
medium |
— |
5.0 |
|
|
irfanview |
16y ago |
Heap-based buffer overflow in IrfanView before 4.27 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PSD image with RLE compre… |
| CVE-2010-1509 |
medium |
— |
5.0 |
|
|
irfanview |
16y ago |
IrfanView before 4.27 does not properly handle an unspecified integer variable during processing of PSD images, which allows remote attackers to cause a denial of service (application crash) or possi… |
