CVE-2021-22510

CVE-2021-22510 affects the Micro Focus Application Automation Tools Plugin for Jenkins (plugin version 6.7 and earlier). The root cause is that user input is not escaped in a form validation response, leading to a Reflected XSS vulnerability. Several connected sources corroborate this issue and n...

KLA11064 Multiple vulnerabilities in IrfanView

Multiple serious vulnerabilities have been found in IrfanView 4.44. Malicious users can exploit these vulnerabilities to cause a denial of service or execute arbitrary code. Below is a complete list of vulnerabilities: 1. An integer overflow vulnerability in the JPEG 2000 parser can be exploited...

IrfanView buffer overflow vulnerability (CNVD-2017-14211)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability to cause a denial of service with t...

IrfanView buffer overflow vulnerability (CNVD-2017-14210)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability to execute arbitrary code or cause ...

IrfanView Buffer Overflow Vulnerability (CNVD-2017-14209)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability to execute arbitrary code or cause ...

IrfanView Buffer Overflow Vulnerability (CNVD-2017-14208)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability to execute arbitrary code or cause ...

IrfanView buffer overflow vulnerability (CNVD-2017-14207)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability with the help of specially crafted...

IrfanView buffer overflow vulnerability (CNVD-2017-14206)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability with the help of specially crafted...

IrfanView Buffer Overflow Vulnerability (CNVD-2017-15701)

IrfanView is an image viewer developed by Irfan Skiljan, a software developer from Bosnia and Herzegovina, which supports image browsing, image editing, image format conversion, etc. TOOLS Plugin is a toolkit plugin used in it. A buffer overflow vulnerability exists in IrfanView version 4.44 32-b...

IrfanView buffer overflow vulnerability (CNVD-2017-15699)

IrfanView is an image viewer developed by Irfan Skiljan, a software developer from Bosnia and Herzegovina, which supports image browsing, image editing, image format conversion, etc. TOOLS Plugin is a toolkit plugin used in it. A buffer overflow vulnerability exists in IrfanView version 4.44 32-b...

IrfanView buffer overflow vulnerability (CNVD-2017-14205)

IrfanView is an image viewer that supports image browsing, image editing, image format conversion and more. A buffer overflow vulnerability exists in the TOOLS plugin version 4.50 used in IrfanView version 4.44 32-bit. An attacker can exploit this vulnerability to execute arbitrary code or cause ...

CVE-2017-9922

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpCompareResourceNamesU+0x0000000000000062."...

CVE-2017-9923

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!EnumResourceTypesInternal+0x0000000000000589."...

CVE-2017-9917

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at...

CVE-2017-9919

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpResCompareResourceNames+0x0000000000000087."...

CVE-2017-9916

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!RtlFreeHandle+0x00000000000001b6."...

CVE-2017-9915

IrfanView version 4.44 32bit with TOOLS plugin 4.50 allows attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "Read Access Violation on Block Data Move starting at ntdll77df0000!memcpy+0x0000000000000033."...

CVE-2017-9918

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!QueryOptionalDelayLoadedAPI+0x0000000000000c42."...

CVE-2017-9920

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpResSearchResourceInsideDirectory+0x000000000000029e."...

CVE-2017-9921

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpResGetMappingSize+0x00000000000003cc."...