253 matches found
Code injection
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Read Access Violation starting at PDF!xmlGetGlobalState+0x000000000007dfa5."...
Code injection
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .pdf file, related to "Data from Faulting Address controls Code Flow starting at PDF!xmlParserInputRead+0x000000000009174a."...
Code injection
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Read Access Violation starting at PDF!xmlParserInputRead+0x00000000001601b0."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address may be used as a return value starting at PDF!xmlParserInputRead+0x0000000000129a59."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Possible Stack Corruption starting at PDF!xmlGetGlobalState+0x0000000000057b35."...
Code injection
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .pdf file, related to "Data from Faulting Address controls Code Flow starting at PDF!xmlParserInputRead+0x0000000000048d0c."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlGetGlobalState+0x0000000000057b76."...
Code injection
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .pdf file, related to "Data from Faulting Address controls Code Flow starting at PDF!xmlParserInputRead+0x00000000000e7326."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .pdf file, related to a "User Mode Write AV starting at PDF!xmlGetGlobalState+0x0000000000031abe."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlParserInputRead+0x00000000000929f5."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlParserInputRead+0x00000000001168a1."...
Design/Logic Flaw
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlListWalk+0x00000000000166c4."...
Code injection
IrfanView version 4.44 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Read Access Violation starting at PDF!xmlParserInputRead+0x0000000000132e19."...
CVE-2017-15239
CVE-2017-15239 affects IrfanView 4.44 (32‑bit) with PDF plugin 4.43. The vulnerability arises in the PDF handling, described as a buffer/heap related issue that can allow denial of service or possibly other impact when processing a crafted PDF, related to data from a faulting address in the XML/P...
CVE-2017-15241
CVE-2017-15241 affects IrfanView 4.44 (32-bit) with PDF plugin 4.43. A crafted PDF can trigger a denial of service or potentially other impact due to a data-from-faulting-address/branch-selection issue in the PDF parser (xmlParserInputRead). Description and connected sources confirm the vulnerabi...
CVE-2017-15243
CVE-2017-15243 affects IrfanView 4.44 (32‑bit) with PDF plugin 4.43. The vulnerability is a local/partial‑privilege issue rooted in a buffer/stack overflow in the PDF handling path (Possible Stack Corruption starting at PDF!xmlGetGlobalState+0x...). A crafted PDF can cause denial of service and p...
CVE-2017-15244
CVE-2017-15244 affects IrfanView 4.44 (32‑bit) with PDF plugin 4.43. A crafted PDF can trigger a buffer overflow in the PDF plugin, leading to denial of service and potentially other impact. The CVSS data indicate local exploitation with the potential for high impact on confidentiality, integrity...
CVE-2017-15245
CVE-2017-15245 affects IrfanView 4.44 (32‑bit) with PDF plugin 4.43. The vulnerability enables denial of service and potentially other impact via a crafted PDF, related to data from a faulting address controlling branch/Code flow in PDF parsing (XML/Parser paths cited in the advisory). Connected ...
CVE-2017-15246
CVE-2017-15246 affects IrfanView 4.44 (32‑bit) with PDF plugin 4.43 . The issue is a buffer/read access violation in the PDF handling (Read Access Violation on Block Data Move) that can allow a local attacker to execute arbitrary code or cause a denial of service via a crafted PDF. The CVSS indic...
CVE-2017-15249
CVE-2017-15249 affects IrfanView 4.44 (32‑bit) with PDF plugin 4.43. A crafted PDF file can trigger a buffer/overflow path that allows arbitrary code execution or a denial of service, via faulting address data influencing control flow (PDF!xmlGetGlobalState+0x668d6). Related 32‑bit vulnerabilitie...