Lucene search
HistoryJul 05, 2012 - 10:55 p.m.
CVE-2012-3585
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.8
Confidence
High
EPSS
0.09
Percentile
94.7%
Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS file.
Affected configurations
Node
irfanviewirfanview_pluginsRange≤4.33
irfanviewirfanview
| Vendor | Product | Version | CPE |
|---|---|---|---|
| irfanview | irfanview_plugins | * | cpe:2.3:a:irfanview:irfanview_plugins:*:*:*:*:*:*:*:* |
| irfanview | irfanview | * | cpe:2.3:a:irfanview:irfanview:*:*:*:*:*:*:*:* |
Related
nessus
nessus
IrfanView JLS Plugin JLS Compressed Image File Handling Overflow
2012-07-18 00:00:00
cvelist
cvelist
CVE-2012-3585
2012-07-05 22:00:00
zdt
zdt
IrfanView JLS Formats PlugIn Heap Overflow
2012-06-29 00:00:00
seebug
seebug
IrfanView JLS Formats PlugIn Heap Overflow
2014-07-01 00:00:00
exploitpack
exploitpack
IrfanView JLS Formats PlugIn - Heap Overflow
2012-06-30 00:00:00
exploitdb
exploitdb
IrfanView JLS Formats PlugIn - Heap Overflow
2012-06-30 00:00:00
prion
prion
Heap overflow
2012-07-05 22:55:00
cve
cve
CVE-2012-3585
2012-07-05 22:55:01
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.8
Confidence
High
EPSS
0.09
Percentile
94.7%
Related for NVD:CVE-2012-3585