Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-3585
cve-2012-3585
heap-based buffer overflow
jpeg_ls.dll
jpeg_ls plugin
irfanview plugins
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.1%
Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS file.
Affected configurations
Node
irfanviewirfanview_pluginsRange≤4.33
irfanviewirfanview
| CPE | Name | Operator | Version |
|---|---|---|---|
| irfanview:irfanview_plugins | irfanview irfanview plugins | le | 4.33 |
Related
seebug
seebug
IrfanView JLS Formats PlugIn Heap Overflow
2014-07-01 00:00:00
exploitpack
exploitpack
IrfanView JLS Formats PlugIn - Heap Overflow
2012-06-30 00:00:00
prion
prion
Heap overflow
2012-07-05 22:55:00
nvd
nvd
CVE-2012-3585
2012-07-05 22:55:01
nessus
nessus
IrfanView JLS Plugin JLS Compressed Image File Handling Overflow
2012-07-18 00:00:00
cvelist
cvelist
CVE-2012-3585
2022-10-03 16:15:22
exploitdb
exploitdb
IrfanView JLS Formats PlugIn - Heap Overflow
2012-06-30 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.1%
Related for CVE-2012-3585