Lucene search

[email protected]NVD:CVE-2011-5233

HistoryOct 25, 2012 - 5:55 p.m.

CVE-2011-5233

2012-10-2517:55:07

CWE-119

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

8 High

AI Score

Confidence

High

0.104 Low

EPSS

Percentile

95.0%

JSON

Heap-based buffer overflow in IrfanView before 4.32 allows remote attackers to execute arbitrary code via crafted “Rows Per Strip” and “Samples Per Pixel” values in a TIFF image file.

Affected configurations

NVD

Node

irfanviewirfanviewRange≤4.30

irfanviewirfanviewMatch3.90

irfanviewirfanviewMatch3.91

irfanviewirfanviewMatch3.92

irfanviewirfanviewMatch3.95

irfanviewirfanviewMatch3.97

irfanviewirfanviewMatch3.98

irfanviewirfanviewMatch3.99

irfanviewirfanviewMatch4.00

irfanviewirfanviewMatch4.10

irfanviewirfanviewMatch4.20

irfanviewirfanviewMatch4.23

irfanviewirfanviewMatch4.25

irfanviewirfanviewMatch4.27

irfanviewirfanviewMatch4.28

References

secunia.com/advisories/47065

www.exploit-db.com/exploits/18257

www.irfanview.com/history_old.htm

www.osvdb.org/77957

www.protekresearchlab.com/index.php?option=com_content&view=article&id=30&Itemid=30

exchange.xforce.ibmcloud.com/vulnerabilities/71891

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

8 High

AI Score

Confidence

High

0.104 Low

EPSS

Percentile

95.0%

JSON

Related for NVD:CVE-2011-5233

cve1 nessus1 prion1 cvelist1