Lucene search
HistoryJan 20, 2012 - 5:55 p.m.
CVE-2012-0897
cve-2012-0897
stack-based buffer overflow
irfanview plugins
jpeg2000
jp2
nvd
quantization default
qcd marker segment
buffer overflow
remote code execution
vulnerability
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.9 High
AI Score
Confidence
Low
0.945 High
EPSS
Percentile
99.2%
Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Affected configurations
Node
irfanviewirfanviewRange≤4.32
ORirfanviewirfanviewMatch1.70
ORirfanviewirfanviewMatch1.75
ORirfanviewirfanviewMatch1.80
ORirfanviewirfanviewMatch1.85
ORirfanviewirfanviewMatch1.90
ORirfanviewirfanviewMatch1.95
ORirfanviewirfanviewMatch1.97
ORirfanviewirfanviewMatch1.98
ORirfanviewirfanviewMatch1.98a
ORirfanviewirfanviewMatch1.99
ORirfanviewirfanviewMatch2.00
ORirfanviewirfanviewMatch2.05
ORirfanviewirfanviewMatch2.07
ORirfanviewirfanviewMatch2.10
ORirfanviewirfanviewMatch2.12
ORirfanviewirfanviewMatch2.15
ORirfanviewirfanviewMatch2.17
ORirfanviewirfanviewMatch2.18
ORirfanviewirfanviewMatch2.20
ORirfanviewirfanviewMatch2.22
ORirfanviewirfanviewMatch2.25
ORirfanviewirfanviewMatch2.27
ORirfanviewirfanviewMatch2.30
ORirfanviewirfanviewMatch2.32
ORirfanviewirfanviewMatch2.35
ORirfanviewirfanviewMatch2.37
ORirfanviewirfanviewMatch2.40
ORirfanviewirfanviewMatch2.50
ORirfanviewirfanviewMatch2.52
ORirfanviewirfanviewMatch2.55
ORirfanviewirfanviewMatch2.60
ORirfanviewirfanviewMatch2.62
ORirfanviewirfanviewMatch2.63
ORirfanviewirfanviewMatch2.65
ORirfanviewirfanviewMatch2.66
ORirfanviewirfanviewMatch2.68
ORirfanviewirfanviewMatch2.80
ORirfanviewirfanviewMatch2.82
ORirfanviewirfanviewMatch2.83
ORirfanviewirfanviewMatch2.85
ORirfanviewirfanviewMatch2.90
ORirfanviewirfanviewMatch2.92
ORirfanviewirfanviewMatch2.95
ORirfanviewirfanviewMatch2.97
ORirfanviewirfanviewMatch2.98
ORirfanviewirfanviewMatch3.00
ORirfanviewirfanviewMatch3.0.7
ORirfanviewirfanviewMatch3.02
ORirfanviewirfanviewMatch3.05
ORirfanviewirfanviewMatch3.07
ORirfanviewirfanviewMatch3.10
ORirfanviewirfanviewMatch3.12
ORirfanviewirfanviewMatch3.15
ORirfanviewirfanviewMatch3.17
ORirfanviewirfanviewMatch3.20
ORirfanviewirfanviewMatch3.21
ORirfanviewirfanviewMatch3.25
ORirfanviewirfanviewMatch3.30
ORirfanviewirfanviewMatch3.33
ORirfanviewirfanviewMatch3.35
ORirfanviewirfanviewMatch3.36
ORirfanviewirfanviewMatch3.50
ORirfanviewirfanviewMatch3.51
ORirfanviewirfanviewMatch3.60
ORirfanviewirfanviewMatch3.61
ORirfanviewirfanviewMatch3.70
ORirfanviewirfanviewMatch3.75
ORirfanviewirfanviewMatch3.80
ORirfanviewirfanviewMatch3.85
ORirfanviewirfanviewMatch3.90
ORirfanviewirfanviewMatch3.91
ORirfanviewirfanviewMatch3.92
ORirfanviewirfanviewMatch3.95
ORirfanviewirfanviewMatch3.97
ORirfanviewirfanviewMatch3.98
ORirfanviewirfanviewMatch3.99
ORirfanviewirfanviewMatch4.00
ORirfanviewirfanviewMatch4.10
ORirfanviewirfanviewMatch4.20
ORirfanviewirfanviewMatch4.22
ORirfanviewirfanviewMatch4.23
ORirfanviewirfanviewMatch4.25
ORirfanviewirfanviewMatch4.27
ORirfanviewirfanviewMatch4.28
ORirfanviewirfanviewMatch4.30
Related
packetstorm
packetstorm
Irfanview JPEG2000 4.3.2.0 jp2 Stack Buffer Overflow
2012-07-02 00:00:00
openvas
openvas
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability
2012-02-01 00:00:00
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability
2012-02-01 00:00:00
checkpoint_advisories
checkpoint_advisories
Irfanview JPEG2000 jp2 Stack Buffer Overflow (CVE-2012-0897)
2013-09-01 00:00:00
nessus
nessus
prion
prion
Stack overflow
2012-01-20 17:55:00
Design/Logic Flaw
2015-06-13 14:59:00
nvd
nvd
CVE-2012-0897
2012-01-20 17:55:02
CVE-2015-2336
2015-06-13 14:59:00
cvelist
cvelist
CVE-2012-0897
2012-01-20 17:00:00
CVE-2015-2336
2015-06-13 14:00:00
cve
cve
CVE-2015-2336
2015-06-13 14:59:00
vmware
vmware
securityvulns
securityvulns
kaspersky
kaspersky
KLA10597 Multiple vulnerabilities in VMware products
2015-06-09 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.9 High
AI Score
Confidence
Low
0.945 High
EPSS
Percentile
99.2%
Related for CVE-2012-0897